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the open key of DAS is changed into a contents key KpDEV(Kc) enciphered by the 
open key KpDEV of the user device. The shop server transmits the changes contents 
key to the user device on condition that the charging processing is completed with 
respect to the contents purchase request. 
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2.**** shows the word which can not be translated. 
3. In the drawings, any words are not translated. 
CLAIMS ! 
[Claim(s)] 

[Claim 1] While receiving the contents purchase demand from the user machine (DEV) 
which transmits a contents purchase demand to a shop server, and said user machine 
The shop server which manages the encryption contents enciphered with the contents 
key Kc, and the encryption contents key which cannot be decoded with the storing key 
of said user machine (SHOP), It has the key or ** which uses said encryption contents 
key as the encryption contents key which can be decoded with the storing key of said 
user machine, or the user machine authentication server (DAS) which obtains and 
performs processing. It is contingent [ on the accounting based on the contents 
purchase with said user machine having been completed ]. The contents distribution 
system characterized by considering as the configuration which provides said user 
machine with the encryption contents key which can be decoded with the storing key of 
the user machine which said user machine authentication server generated from said 
shop server. 

[Claim 2] The encryption contents key which cannot be decoded with the storing key of 
said user machine It is the encryption contents key KpDAS (Kc) enciphered with the 
public key KpDAS of said user machine authentication server (DAS). It obtains in the 
key or ** which said user machine authentication server (DAS) performs. Processing 
Decode said encryption contents key KpDAS (Kc) with the private key KsDAS of said 
user machine authentication server (DAS), and the contents key Kc is acquired. The 
contents distribution system according to claim 1 characterized by being the processing 
which furthermore re-enciphers with the public key KpDEV of said user machine (DEV), 
and generates the encryption contents key KpDEV (Kc). 

[Claim 3] Said user machine authentication server receives the encryption contents key 
which cannot be decoded with the storing key of said user machine to said user 
machine. The encryption contents key which can be decoded with the storing key of a 
key, **, or the user machine that obtains and is generated by processing is transmitted 
to said shop server. Said shop server The contents distribution system according to 
claim 1 characterized by having the configuration which performs processing which 
transmits the encryption contents key which can be decoded with the storing key of said 
user machine to said user machine a condition [ completion of said accounting ]. 
[Claim 4] Said user machine authentication server receives the encryption contents key 
which cannot be decoded with the storing key of said user machine from said shop 
server. The encryption contents key which can be decoded with the storing key of a key, 
**, or the user machine that obtains and is generated by processing is transmitted to 
said shop server. Said shop server The contents distribution system according to claim 
1 characterized by having the configuration which performs processing which transmits 
the encryption contents key which can be decoded with the storing key of said user 
machine to said user machine a condition [ completion of said accounting ]. 
[Claim 5] Said contents distribution system has further the distribution server which 
distributes encryption contents to said user machine. Said shop server It has the 
configuration which transmits a contents distribution demand for the contents purchase 
demand from said user machine to said distribution server according to reception. Said 
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distribution server The contents distribution system according to claim 1 characterized 
by having the configuration which performs processing which distributes encryption 
contents to said user machine according to the contents distribution demand from said 
shop server. 

[Claim 6] The contents purchase requested data which said user machine generates 
and is transmitted to said shop server The shop ID as an identifier of the shop which is 
a requested data transmission place, the transaction ID as a contents dealings identifier 
It is constituted as data which include the electronic signature of a user machine while 
having the content ID as a contents identifier for a purchase demand. Said shop server 
While checking data alteration existence by performing signature verification of said 
contents purchase requested data Based on this contents purchase requested data, a 
new entry is added to a shop management database. The contents distribution system 
according to claim 1 characterized by having the configuration which sets up the status 
information which shows the processing situation over this additional entry, and 
manages processing sequence transition at this shop based on said status information. 
[Claim 7] Said user machine authentication server is the contents distribution system 
according to claim 1 characterized by to have the configuration which obtains in the key 
or ** from either of said user machine or said shop server, adds a new entry to a user 
machine authentication server management database according to reception of a 
demand, sets up the status information which shows the processing situation over this 
additional entry, and manages the processing sequence transition by this user machine 
authentication server based on said status information. 

[Claim 8] They are a shop server and the user machine authentication server which 
performs distribution management of the contents dealt with between user machines. 
Obtain in the key or ** received from said shop server or said user machine, and it 
responds to receipt of a demand. The contents key which is an encryption key of 
contents dealt with between a shop server and a user machine It has the key changed 
into the encryption contents key which can be decoded with the storing key of said user 
machine from the encryption contents key enciphered in the mode which cannot be 
decoded with the storing key of said user machine, **, or the configuration which obtains 
and performs processing, the electronic signature of said shop server which obtains 
said user machine authentication server in said key or **, and is contained during a 
demand and The user machine authentication server characterized by having the 
configuration which obtains in said key or ** a condition [ having verified the electronic 
signature of said user machine, having obtained in said key or ** by this verification and 
the justification of a demand having been checked ], and performs processing. 
[Claim 9] It is the shop server which offers the contents key applied to decode of 
encryption contents to a user machine. The encryption contents key which enciphered 
the contents key which is an encryption key of contents in the mode which cannot be 
decoded with the storing key of said user machine is managed, and it is contingent [ on 
completion of the accounting based on the contents purchase demand from said user 
machine ]. It obtains in the key or ** of an encryption contents key enciphered in the 
mode which the user machine authentication server (DAS) which manages contents 
distribution cannot decode with the storing key of said user machine. By processing The 
shop server characterized by having the configuration which performs processing which 
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transmits the encryption contents key which can be decoded with the storing key of said 
user machine to generate to said user machine. 

[Claim 10] Said shop server is a shop server according to claim 9 characterized by 
being a configuration containing the distribution server of encryption contents. 
[Claim 1 1] It is the contents playback device which generates the purchase demand of 
contents, transmits to a shop server, and performs regeneration of contents. The 
encryption contents key data which can be decoded with the storing key of the key or ** 
which the user machine authentication server (DAS) which performs distribution 
management of contents performs, or said contents playback device which obtains and 
is generated by processing are received through a shop server. Signature verification of 
the shop server contained in the this encryption contents key data to receive and a user 
machine authentication server (DAS) is performed, and it is contingent [ on it having 
been checked that there is no data alteration ]. The contents playback device 
characterized by having the configuration which takes out and decodes an encryption 
contents key from the received encryption contents key data, and performs acquisition 
processing of a contents key. 

[Claim 12] In the step which transmits a contents purchase demand from a user 
machine (DEV) to a shop server (SHOP), and a shop server (SHOP) In the step which 
receives the contents purchase demand from said user machine, and a user machine 
authentication server (DAS) The key changed into the encryption contents key which 
can be decoded with the storing key of said user machine from the encryption contents 
key which cannot be decoded with the storing key of said user machine, **, or the step 
which obtains and performs processing, It is contingent [ on the accounting based on 
the contents purchase with said user machine having been completed in said shop . 
server ]. The contents distribution approach characterized by having the step which 
provides said user machine with the encryption contents key which can be decoded with 
the storing key of the user machine which said user machine authentication server 
generated from said shop server. 

[Claim 13] The encryption contents key which cannot be decoded with the storing key of 
said user machine It is the encryption contents key KpDAS (Kc) enciphered with the 
public key KpDAS of said user machine authentication server (DAS). It obtains in the 
key or ** which said user machine authentication server (DAS) performs. Processing 
Decode said encryption contents key KpDAS (Kc) with the private key KsDAS of said 
user machine authentication server (DAS), and the contents key Kc is acquired. The 
contents distribution approach according to claim 12 characterized by being the 
processing which furthermore re-enciphers with the public key KpDEV of said user 
machine (DEV), and generates the encryption contents key KpDEV (Kc). 
[Claim 14] Said user machine authentication server receives the encryption contents 
key which cannot be decoded with the storing key of said user machine to said user 
machine. The encryption contents key which can be decoded with the storing key of a 
key, **, or the user machine that obtains and is generated by processing is transmitted 
to said shop server. Said shop server The contents distribution approach according to 
claim 12 characterized by having the configuration which performs processing which 
transmits the encryption contents key which can be decoded with the storing key of said 
user machine to said user machine a condition [ completion of said accounting ]. 
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[Claim 15] Said user machine authentication server receives the encryption contents 
key which cannot be decoded with the storing key of said user machine from said shop 
server. The encryption contents key which can be decoded with the storing key of a key, 
**, or the user machine that obtains and is generated by processing is transmitted to 
said shop server. Said shop server The contents distribution approach according to 
claim 12 characterized by having the configuration which performs processing which 
transmits the encryption contents key which can be decoded with the storing key of said 
user machine to said user machine a condition [ completion of said accounting ]. 
[Claim 16] The contents purchase requested data which said user machine generates 
and is transmitted to said shop server The shop ID as an identifier of the shop which is 
a requested data transmission place, the transaction ID as a contents dealings identifier 
It is constituted as data which include the electronic signature of a user machine while 
having the content ID as a contents identifier for a purchase demand. Said shop server 
While checking data alteration existence by performing signature verification of said 
contents purchase requested data Based on this contents purchase requested data, a 
new entry is added to a shop management database. The contents distribution 
approach according to claim 12 characterized by setting up the status information which 
shows the processing situation over this additional entry, and managing processing 
sequence transition at this shop based on said status information. 
[Claim 17] Said user machine authentication server is the contents distribution approach 
according to claim 12 characterized by obtaining in the key or ** from either of said user 
machine or said shop server, adding a new entry to a user machine authentication 
server management database according to reception of a demand, setting up the status 
information which shows the processing situation over this additional entry, and 
managing the processing sequence transition by this user machine authentication 
server based on said status information. 

[Claim 18] It is the program offer medium which offers the computer program which 
makes the message distribution processing of a contents key perform on computer 
system. Said computer program The step which receives the encryption contents key 
which can be decoded with the storing key of the user machine which the user machine 
uthentication server (DAS) which manages contents distribution generates, The step 
which performs accounting based on the contents purchase demand from said user 
machine, The program offer medium characterized by having the step which transmits 
the encryption contents key which can be decoded with the storing key of a user 
machine to said user machine a condition [ completion of said accounting ]. 
DETAILED DESCRIPTION 
[Detailed Description of the Invention] 
[0001] 

[Field of the Invention] This invention relates to a contents distribution system and the 
contents distribution approach. Furthermore, it is related with the contents distribution 
system and the contents distribution approach of having improved in the detail the entity 
which performs contents offer service, and the security in the contents dealings 
between the user machines who perform contents reception and a management 
configuration. In addition, a system is the logical set configuration of two or more 
equipments, and it does not restrict to what has equipment of each configuration in the 
same case. 
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[0002] 

[Description of the Prior Art] Circulation through networks, such as the Internet of 
various software data (these are hereafter called contents (Content)), such as a game 
program, voice data, image data, and a document preparation program, prospers these 
days. Moreover, goods dealing, settlement-of-accounts processing, etc. through 
networks, such as on-line shopping, bank settlement of accounts, and ticket sale, 
prosper. 

[0003] In the data communication through such a network, it is common to take the data 
transfer configuration which transmits required information, namely, took security into 
consideration after checking that a data source and a data receiving side were the 
regular candidates for data transceiver mutually. The technique of realizing the security 
configuration in the case of data transfer has transfer data encryption processing, the 
signature processing to data, etc. 

[0004] Encryption data can be returned to available decode data (plaintext) by 
decryption processing in a predetermined procedure. The data encryption and the 
decryption approach of using an encryption key for encryption processing of such 
information, and using a decryption key for decryption processing are well learned from 
the former. 

[0005] Although there are various classes of the modes of the data encryption and the 
decryption approach using an encryption key and a decryption key, there is a method 
called the so-called public key cryptosystem as the one example. A public key 
cryptosystem is taken as the private key with which one key is kept as what is different 
in the key of an addresser and an addressee, and an unspecified user keeps another 
side secret as an usable public key. For example, use a data encryption key as a public 
key, and let a decode key be a private key. Or it is used in a mode, such as using an 
authentication child generation key as a private key, and using an authentication child 
verification key as a public key. 

[0006] Since one specific person should just have a private key with the need of 
keeping it secret by the public key cryptosystem unlike the so-called common key 
encryptosystem-ized method using a key common to encryption and a decryption, it is 
advantageous in management of a key. However, as compared with a common key 
encryptosystem-ized method, the processing data rate of a public key cryptosystem is 
slow, and they are used. [ for an object with little amount of data, such as delivery of a 
private key and a digital signature, ] [ many ] A RSA (Rivest-Shamir-Adleman) code is 
one of the typical things of a public key cryptosystem. This uses the difficulty of the 
processing of the product of the two big prime factors (for example, 150 figures) which 
carries out factorization in prime numbers using the product of the two very big prime 
factors (for example, 150 figures). 

[0007] In the public key cryptosystem, many approaches of using the certificate proving 
whether the public key which is the configuration made usable and distributes a public 
key to many and unspecified persons is just, and the so-called public key certificate are 
used. For example, the pair of a public key and a private key is generated, and User A 
sends the generated public key to a certificate authority, and receives a public key 
certificate from a certificate authority. Generally User A exhibits a public key certificate. 
An unspecified user receives a public key through a predetermined procedure from a 
public key certificate, enciphers a document etc., and sends to User A. User A is the 
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system of decoding an encryption document etc. using a private key. Moreover, User A 
is a system which a signature is attached to a document etc. using a private key, and an 
unspecified user receives a public key through a predetermined procedure from a public 
key certificate, and verifies the signature. 

[0008] A public key certificate is a certificate which the certificate authority or issue 
station (CA:Certificate Authority or I A: Issuer Authority) in a public key cryptosystem 
publishes, and when a user submits self ID, a public key, etc. to a certificate authority, it 
is a certificate with which a certificate authority side adds information, such as ID of a 
certificate authority, and an expiration date, adds the signature by the certificate 
authority further, and is created. 

[0009] A public key certificate includes electronic signature in the algorithm used for the 
version number of a certificate, the serial number of the certificate which an issue 
station assigns to a certificate user, and electronic signature and a parameter, the 
identifier of a certificate authority, the expiration date of a certificate, a certificate user's 
identifier (user ID), and a certificate user's public key list. 

[0010] Electronic signature is data which generated the hash value with the application 
of the Hash Function to a certificate user's whole public key in the algorithm used for the 
version number of a certificate, the serial number of the certificate which a certificate 
authority assigns to a certificate user, and electronic signature and the parameter, the 
identifier of a certificate authority, the expiration date of a certificate, and a certificate 
user's identifier list, and were generated using the private key of a certificate authority to 
the hash value. 

[001 1] On the other hand, in case this public key certificate is used, using the public key 
of the certificate authority which self holds, a user verifies the electronic signature of the 
public key certificate concerned, after he succeeds in verification of electronic signature, 
he picks out a public key from a public key certificate, and uses the public key 
concerned. Therefore, all the users using a public key certificate need to hold the public 
key of a common certificate authority. 
[0012] 

[Problem(s) to be Solved by the Invention] In the data transmitting system by the public 
key cryptosystem using the public key certificate of the above certificate authority issue, 
the contents distribution shop which distributes contents, for example enciphers the 
contents for distribution based on a user's public key, and transmits them to a user. The 
user machine which received the encryption data from a contents distribution shop 
performs decode of encryption contents with the self private key corresponding to a self 
public key. 

[0013] However, the contents distribution shop where a license holder with the right of 
distribution of contents or the contents manufacturer with the copyright of contents 
performs offer service to the user of contents in actual contents dealings is a different 
existence in many cases, and about whether it has the right of contents use with the just 
user who has received contents, the contents distribution shop is distributing contents in 
many cases, without checking. That is, contents may be unfairly used or sold by the 
user without the just right of use. 

[0014] Moreover, in the above dealings gestalten, although the dealings accompanied 
by the suitable charge of contents use are materialized in between 2 persons of the 
contents distribution shop which is the vender of contents, and the user machine which 
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is a contents user, acquisition of the charge of a license accompanying the contents 
dealings between a shop and a user in a license holder with the right of distribution of 
contents or the contents manufacturer with the copyright of contents is not guaranteed. 
It is a general dealings gestalt that check the distribution cost of contents and a license 
holder or a contents manufacturer is provided with the charge of a license based on 
self-assessment by self-assessment of a contents distribution shop from a shop in the 
present condition. 

[0015] The license holder which has the right of distribution of contents with such a 
contents dealings gestalt, or the contents manufacturer with the copyright of contents 
has not grasped the stereo of contents dealings, and did not have a means to check 
whether contents are circulating justly under the exact right of use. 
[0016] The contents distribution system and the contents distribution approach of this 
invention having been made in view of the trouble in the above contents dealings, 
having made grasp certainly possible in the license holder which has the right of 
distribution of contents for the stereo of the contents dealings between the contents 
distribution shops and the users who perform distribution service of contents, or the 
contents manufacturer with the copyright of contents, and having carried out as the 
configuration which performs contents distribution under management of the just right of 
contents use provide. 
[0017] 

[Means for Solving the Problem] While the 1st side face of this invention receives the 
contents purchase demand from the user machine (DEV) which transmits a contents 
purchase demand to a shop server, and said user machine The shop server which 
manages the encryption contents enciphered with the contents key Kc, and the 
encryption contents key which cannot be decoded with the storing key of said user 
machine (SHOP), It has the key or ** which uses said encryption contents key as the 
encryption contents key which can be decoded with the storing key of said user 
machine, or the user machine authentication server (DAS) which obtains and performs 
processing. It is contingent [ on the accounting based on the contents purchase with 
said user machine having been completed ]. It is in the contents distribution system 
characterized by considering as the configuration which provides said user machine 
with the encryption contents key which can be decoded with the storing key of the user 
machine which said user machine authentication server generated from said shop 
server. 

[0018] The contents distribution system of this invention sets like 1 operative condition. 
Furthermore, the encryption contents key which cannot be decoded with the storing key 
of said user machine It is the encryption contents key KpDAS (Kc) enciphered with the 
public key KpDAS of said user machine authentication server (DAS). It obtains in the 
key or ** which said user machine authentication server (DAS) performs. Processing 
Decode said encryption contents key KpDAS (Kc) with the private key KsDAS of said 
user machine authentication server (DAS), and the contents key Kc is acquired. It is 
characterized by being the processing which furthermore re-enciphers with the public 
key KpDEV of said user machine (DEV), and generates the encryption contents key 
KpDEV (Kc). 

[0019] The contents distribution system of this invention sets like 1 operative condition. 
Furthermore, said user machine authentication server The encryption contents key 
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which cannot be decoded with the storing key of said user machine to said user 
machine is received. The encryption contents key which can be decoded with the 
storing key of a key, **, or the user machine that obtains and is generated by processing 
is transmitted to said shop server. Said shop server It is characterized by having the 
configuration which performs processing which transmits the encryption contents key 
which can be decoded with the storing key of said user machine to said user machine a 
condition [ completion of said accounting j. 

[0020] The contents distribution system of this invention sets like 1 operative condition. 
Furthermore, said user machine authentication server From said shop server, the 
encryption contents key which cannot be decoded with the storing key of said user 
machine is received. The encryption contents key which can be decoded with the 
storing key of a key, **, or the user machine that obtains and is generated by processing 
is transmitted to said shop server. Said shop server It is characterized by having the 
configuration which performs processing which transmits the encryption contents key 
which can be decoded with the storing key of said user machine to said user machine a 
condition [ completion of said accounting j. 

[0021] The contents distribution system of this invention sets like 1 operative condition. 
Furthermore, said contents distribution system It has the distribution server which 
distributes encryption contents to said user machine. Furthermore, said shop server It 
has the configuration which transmits a contents distribution demand for the contents 
purchase demand from said user machine to said distribution server according to 
reception. Said distribution server It is characterized by having the configuration which 
performs processing which distributes encryption contents to said user machine 
according to the contents distribution demand from said shop server. 
[0022] Furthermore, the contents purchase requested data which the contents 
distribution system of this invention sets like 1 operative condition, and said user 
machine generates, and is transmitted to said shop server The shop ID as an identifier 
of the shop which is a requested data transmission place, the transaction ID as a 
contents dealings identifier It is constituted as data which include the electronic 
signature of a user machine while having the content ID as a contents identifier for a 
purchase demand. Said shop server While checking data alteration existence by 
performing signature verification of said contents purchase requested data Based on 
this contents purchase requested data, a new entry is added to a shop management 
database. The status information which shows the processing situation over this 
additional entry is set up, and it is characterized by having the configuration which 
manages processing sequence transition at this shop based on said status information. 
[0023] The contents distribution system of this invention sets like 1 operative condition. 
Furthermore, said user machine authentication server Obtain in the key or ** from either 
of said user machine or said shop server, and it responds to reception of a demand. A 
new entry is added to a user machine authentication server management database, the 
status information which shows the processing situation over this additional entry is set 
up, and it is characterized by having the configuration which manages the processing 
sequence transition by this user machine authentication server based on said status 
information. 

[0024] Furthermore, the 2nd side face of this invention is a shop server and a user 
machine authentication server which performs distribution management of the contents 
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dealt with between user machines. Obtain in the key or ** received from said shop 
server or said user machine, and it responds to receipt of a demand. The contents key 
which is an encryption key of contents dealt with between a shop server and a user 
machine It has the key changed into the encryption contents key which can be decoded 
with the storing key of said user machine from the encryption contents key enciphered 
in the mode which cannot be decoded with the storing key of said user machine, **, or 
the configuration which obtains and performs processing, the electronic signature of 
said shop server which obtains said user machine authentication server in said key or ** 
and is contained during a demand and The electronic signature of said user machine 
is verified and it is in the user machine authentication server characterized by having 
the configuration which obtains in said key or ** a condition [ having obtained in said key 
or ** by this verification, and the justification of a demand having been checked ], and 
performs processing. 

[0025] Furthermore, the 3rd side face of this invention is a shop server which offers the 
contents key applied to decode of encryption contents to a user machine. The 
encryption contents key which enciphered the contents key which is an encryption key 
of contents in the mode which cannot be decoded with the storing key of said user 
machine is managed, and it is contingent [ on completion of the accounting based on 
the contents purchase demand from said user machine ]. It obtains in the key or ** of an 
encryption contents key enciphered in the mode which the user machine authentication 
server (DAS) which manages contents distribution cannot decode with the storing key of 
said user machine. By processing It is in the shop server characterized by having the 
configuration which performs processing which transmits the encryption contents key 
which can be decoded with the storing key of said user machine to generate to said 
user machine. 

[0026] Furthermore, the shop server of this invention sets like 1 operative condition, and 
said shop server is characterized by being a configuration containing the distribution 
server of encryption contents. 

[0027] Furthermore, the 4th side face of this invention is a contents playback device 
which generates the purchase demand of contents, transmits to a shop server, and 
performs regeneration of contents. The encryption contents key data which can be 
decoded with the storing key of the key or ** which the user machine authentication 
server (DAS) which performs distribution management of contents performs, or said 
contents playback device which obtains and is generated by processing are received 
through a shop server. Signature verification of the shop server contained in the this 
encryption contents key data to receive and a user machine authentication server (DAS) 
is performed, and it is contingent [ on it having been checked that there is no data 
alteration ]. It is in the contents playback device characterized by having the 
configuration which takes out and decodes an encryption contents key from the 
received encryption contents key data, and performs acquisition processing of a 
contents key. 

[0028] Furthermore, the 5th side face of this invention is set to the step which transmits 
a contents purchase demand from a user machine (DEV) to a shop server (SHOP), and 
a shop server (SHOP). In the step which receives the contents purchase demand from 
said user machine, and a user machine authentication server (DAS) The key changed 
into the encryption contents key which can be decoded with the storing key of said user 
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machine from the encryption contents key which cannot be decoded with the storing key 
of said user machine, **, or the step which obtains and performs processing, It is 
contingent [ on the accounting based on the contents purchase with said user machine 
having been completed in said shop server ]. It is in the contents distribution approach 
characterized by having the step which provides said user machine with the encryption 
contents key which can be decoded with the storing key of the user machine which said 
user machine authentication server generated from said shop server. 
[0029] The contents distribution approach of this invention sets like 1 operative 
condition. Furthermore, the encryption contents key which cannot be decoded with the 
storing key of said user machine It is the encryption contents key KpDAS (Kc) 
enciphered with the public key KpDAS of said user machine authentication server 
(DAS). It obtains in the key or ** which said user machine authentication server (DAS) 
performs. Processing Decode said encryption contents key KpDAS (Kc) with the private 
key KsDAS of said user machine authentication server (DAS), and the contents key Kc 
is acquired. It is characterized by being the processing which furthermore re-enciphers 
with the public key KpDEV of said user machine (DEV), and generates the encryption 
contents key KpDEV (Kc). 

[0030] The contents distribution approach of this invention sets like 1 operative 
condition. Furthermore, said user machine authentication server The encryption 
contents key which cannot be decoded with the storing key of said user machine to said 
user machine is received. The encryption contents key which can be decoded with the 
storing key of a key, **, or the user machine that obtains and is generated by processing 
is transmitted to said shop server. Said shop server It is characterized by having the 
configuration which performs processing which transmits the encryption contents key 
which can be decoded with the storing key of said user machine to said user machine a 
condition [ completion of said accounting j. 

[0031] The contents distribution approach of this invention sets like 1 operative 
condition. Furthermore, said user machine authentication server From said shop server, 
the encryption contents key which cannot be decoded with the storing key of said user 
machine is received. The encryption contents key which can be decoded with the 
storing key of a key, **, or the user machine that obtains and is generated by processing 
is transmitted to said shop server. Said shop server It is characterized by having the 
configuration which performs processing which transmits the encryption contents key 
which can be decoded with the storing key of said user machine to said user machine a 
condition [ completion of said accounting j. 

[0032] Furthermore, the contents purchase requested data which the contents 
distribution approach of this invention sets like 1 operative condition, and said user 
machine generates, and is transmitted to said shop server The shop ID as an identifier 
of the shop which is a requested data transmission place, the transaction ID as a 
contents dealings identifier It is constituted as data which include the electronic 
signature of a user machine while having the content ID as a contents identifier for a 
purchase demand. Said shop server While checking data alteration existence by 
performing signature verification of said contents purchase requested data Based on 
this contents purchase requested data, a new entry is added to a shop management 
database, the status information which shows the processing situation over this 
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additional entry is set up, and it is characterized by managing processing sequence 
transition at this shop based on said status information. 
[0033] The contents distribution approach of this invention sets like 1 operative 
condition. Furthermore, said user machine authentication server Obtain in the key or ** 
from either of said user machine or said shop server, and it responds to reception of a 
demand. A new entry is added to a user machine authentication server management 
database, the status information which shows the processing situation over this 
additional entry is set up, and it is characterized by managing the processing sequence 
transition by this user machine authentication server based on said status information. 
[0034] Furthermore, the 6th side face of this invention is a program offer medium which 
offers the computer program which makes the message distribution processing of a 
contents key perform on computer system. The step which receives the encryption 
contents key which can decode said computer program with the storing key of the user 
machine which the user machine authentication server (DAS) which manages contents 
distribution generates, The step which performs accounting based on the contents 
purchase demand from said user machine, It is in the program offer medium 
characterized by having the step which transmits the encryption contents key which can 
be decoded with the storing key of a user machine to said user machine a condition 
[ completion of said accounting ]. 

[0035] In addition, the program offer medium concerning the 6th side face of this 

invention is a medium which offers a computer program in a computer-readable format 

to the general purpose computer system which can perform various program codes, for 

example. Especially the gestalten, such as transmission media, such as record media, 

such as CD, and FD, MO, or a network, are not limited for a medium. 

[0036] Such a program offer medium defines the collaboration-relation on the structure 

of the computer program and offer medium for realizing the function of a computer 

program predetermined in a computer system top, or a function. If it puts in another way, 

by installing a computer program in computer system through this offer medium, on 

computer system, a collaboration-operation is demonstrated and the same operation 

effectiveness as other side faces of this invention can be acquired. 

[0037] The purpose, the description, and advantage of further others of this invention 

will become [ rather than ] clear by detailed explanation based on the example and the 

drawing to attach of this invention mentioned later. 

[0038] 

[Embodiment of the Invention] Hereafter, the gestalt of operation of this invention is 
explained to a detail, referring to a drawing. In addition, explanation is performed 
according to the following items. 

1 . Key or ** of Encryption Contents Key, or Contents Distribution Management 1.1. 
System Configuration Obtain and According to Processing : Public Key Certificate or 
Attribute Certificate Use Configuration [0039] Which Recorded Contents Distribution 
Management 4. Attribute Data Based on Contents Distribution Model 3. Log Collection 
Server Using Modification 1 .3. Basic Contents Distribution Model 22. Electronic Ticket 
of Basic Contents Distribution Model 1 1 .2. Basic Contents Distribution Model 1 
[Example] [1 . The key or ** of an encryption contents key, or contents distribution 
management] obtain and according to processing 
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[-1.1." system configuration: - drawing which explains the outline of one example of 
the contents distribution system of this invention and the contents distribution approach 
to basic contents distribution model 11 drawing 1 is shown. In addition, a system is the 
logical set configuration of two or more equipments, and it does not restrict to what has 
equipment of each configuration in the same case. 

[0040] The contents distribution system of drawing 1 uses as the main component the 
user machine authentication server (DAS:Device Authentication Server) 300 which 
functions as the user machine (DEVICE) 200 which receives the contents distribution 
from the shop server (SHOP) 100 and the shop server 100 which performs distribution 
service of the contents to a user machine, and a management server which performs 
still more nearly just contents dealings management. In addition, two or more each 
components shown in drawing 1 exist, and information is transmitted [ although the 
shop server 100, the user machine 200 and every one user machine authentication 
server 300 are shown / in an actual contents dealings configuration / for every contents 
dealings ] with the configuration of drawing 1 , and received by various roots. Drawing 1 
shows the data flow in one contents dealings. 

[0041] (Shop server) The configuration of the shop server 100 of the contents 
distribution system of drawing 1 is shown in drawing 2 . The shop server 1 00 has the 
contents database 1 10 which stored the encryption contents key KpDAS (Kc) which 
enciphered the contents key Kc as Kc (Content) which is encryption contents data 
which enciphered the contents used as the candidate for dealings by the contents key 
by public key:KpDAS of a user machine authentication server (DAS:Device 
Authentication Server). In addition, the content ID which is a contents identifier, 
respectively is added, and Kc (Content) which is encryption contents data has an 
identifiable configuration based on content ID, as shown also in drawing. 
[0042] The shop server 100 has the purchase management database 120 which 
matches and manages an identifier, a contents identifier, etc. of contents dealings 
management data, for example, the user machine of a contents sale place, further. 
Furthermore, it has the control means 130 which performs communications processing 
with extract processing of the distribution contents from the contents database 110, 
generation processing of the dealings data registered to the purchase management 
database 120 accompanying dealings, the user machine 200, and the user machine 
authentication server 300, data cipher processing further for each communications 
processing, etc. 

[0043] The data configuration of the purchase management database 120 is shown in 
drawing 3 . Shop processing No. as an identification number which carries out internal 
generation in case, as for the purchase management database 120, a shop server 
performs processing according to contents dealings, The device ID which is the 
identifier of a user machine which published the contents purchase request The 
transaction ID as a contents dealings identifier which carries out generation issue with a 
user vessel in case the contents dealings between a user machine and a shop are 
performed It has each information on the status which shows the status of the contents 
dealings processing in the content ID and the shop server which are the identifier of the 
contents for dealings. The status is updated according to advance of two or more 
processings accompanying dealings of contents, although the latter part explains to a 
detail. 
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[0044] As a control means 130 is shown in drawing 2 , it also has a function as a cipher- 
processing means and a communications processing means, and a control means 130 
is constituted by the computer which stored for example, the code processing program 
and the communication link processing program. The key data used in cipher 
processing performed in the cipher-processing means of a control means 130 are 
stored in the storage means inside a control means secure one. As code problem data, 
such as a cryptographic key which the shop server 100 stores, there is a public key 
KpCA of the certificate authority (CA:Certificate Authority) as a public key certificate 
issue station which is the issue engine of private key:KsSHOP of a shop server, public 
key certificate Cert_SHOP of a shop server, and a public key certificate. 
[0045] The example of a configuration of a control means 130 is shown in drawing 4 . 
The configuration of a control means 130 is explained. A control section 131 is 
constituted by the arithmetic and program control (CPU:Central Processing Unit) which 
performs various processing programs, and controls processing of each configuration 
part of the control means of drawing 4 . ROM (Read only Memory)132 is the memory 
which memorized programs, such as IPL (Initial Program Loading). RAM (Random 
Access Memory)133 is used as the storing field of executive programs, such as the 
program which a control section 131 performs, for example, a database manager, a 
code processing program, and a communications program, and a work area in each 
[ these ] program manipulation. 

[0046] A display 134 has display means, such as a liquid crystal display and CRT, and 
displays the data at the time of various program executions, for example, the user data 
of a contents distribution place etc., under control of a control section 131 . The input 
section 135 has a keyboard and pointing devices, such as a mouse, and outputs the 
command from each [ these ] input device, and a data input to a control section 131 . As 
for HDD (Hard Disk Drive)136, various data are stored in programs, such as a database 
manager, a code processing program, and a communications program, and a pan. 
[0047] Drive 137 has the function which controls access to various record media, such 
as semiconductor memory, such as magneto-optic disks, such as optical disks, such as 
HD (Hard Disk), and magnetic disks, such as FD (Floppy Disk), CD-ROM (Compact 
Disk ROM), and a mini disc, ROM, and a flash memory. Various record media, such as 
a magnetic disk, memorize a program, data, etc. A network interface 138 functions as 
an interface of the communication link through cables, such as the Internet and the 
telephone line, and wireless. 

[0048] The shop server 100 performs various cipher processing accompanying the 
contents dealings between the user machine 200 which is the candidate for dealings of 
contents, or the user machine authentication server 300, authentication processing, etc. 
in the control means 130 with the configuration mentioned above. 
[0049] (User machine authentication server) The configuration of the user machine 
authentication server (DAS) 300 is shown in drawing 5 . A user machine authentication 
server has the license management database 320. The data configuration of the license 
management database 320 is shown in drawing 6 . User machine authentication server 
processing No. as a processing identifier in which a license management database 
carries out internal generation according to the processing to which a user machine 
authentication server (DAS) performs at the time of contents dealings, The device ID 
which is the identifier of a user machine which published the contents purchase request 
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The transaction ID as a contents dealings identifier which carries out generation issue 
with a user vessel in case contents dealings are performed The shop ID which is the 
identifier of the content ID which is the identifier of the contents for dealings, and the 
shop server which performs contents dealings It has each information on the status 
which shows the status of the contents dealings processing in shop processing No. 
which is a processing identifier in the shop which a shop publishes, and a user machine 
authentication server (DAS). The status is [0050] updated according to advance of two 
or more processings accompanying dealings of contents although the latter part 
explains to a detail. The user machine authentication server (DAS) 300 has the control 
means 330 which performs communications processing with the user machine 200 and 
the shop server 100, data cipher processing further for each communications 
processing, etc. A control means 330 has a function as a cipher-processing means and 
a communications processing means as well as the control means of the shop server 
explained previously. The configuration is the same as the configuration explained using 
drawing 4 . The key data used in cipher processing performed in the cipher-processing 
means of a control means 330 are stored in the storage means inside a control means 
secure one. As code problem data, such as a cryptographic key which the user machine 
authentication server (DAS) 300 stores, there is a public key KpCA of the certificate 
authority (CA:Certificate Authority) as a public key certificate issue station which is the 
issue engine of private key:KsDAS of a user machine authentication server (DAS), 
public key certificate Cert_DAS of a user machine authentication server (DAS), and a 
public key certificate. 

[0051] (User machine) The configuration of the user machine 200 is shown in drawing 
7 . A user machine is for example, a contents playback device which performs use of 
the contents which performed and purchased the purchase of contents, i.e., contents 
playback, and activation, and has the purchase management database 220. The data 
configuration of the purchase management database 220 is shown in drawing 8 . In 
case a purchase management database performs contents dealings, it has further each 
information on the status which shows the status of the contents dealings processing in 
the shop ID which is the identifier of the content ID which is the transaction ID as a 
contents dealings identifier which carries out generation issue with a user vessel, and 
the identifier of the contents for dealings, and the shop server which performs contents 
dealings, and a user machine, and the device ID which is the instrument identification 
child of a user machine. The status is updated according to advance of two or more 
processings accompanying dealings of contents, although the latter part explains to a 
detail. 

[0052] The user machine 200 has the control means 230 which performs 
communications processing with the shop server 100 and the user machine 
authentication server 300, data cipher processing further for each communications 
processing, etc. A control means 230 has a function as a cipher-processing means and 
a communications processing means as well as the control means of the shop server 
explained previously. The configuration is the same as the configuration explained using 
drawing 4 . The key data used in cipher processing performed in the cipher-processing 
means of a control means 230 are stored in the storage means inside a control means 
secure one. There is a preservation key Ksto applied as an encryption key at the time of 
storing the public key KpCA and contents of a certificate authority (CA:Certificate 
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Authority) as a public key certificate issue station which is the issue engine of private 
key:KsDEV of a user machine, public key certificate Cert_DEV of a user machine, and a 
public key certificate in storage means, such as a user machine, for example, a hard 
disk etc., as code problem data, such as a cryptographic key which the user machine 
200 stores. 

[0053] The [public key certificate] above-mentioned shop server (SHOP) 100, the user 
machine (DEVICE) 200, and the public key certificate that the user machine 
authentication server (DAS:Device Authentication Server) 300 holds are explained 
using drawing 9 . 

[0054] A third person (CA:Certificate Authority), i.e., an issue station, proves that it is the 
public key with which a user with the just public key to be used has a public key 
certificate in processing of the mutual recognition between 2 persons who perform the 
transmission and reception of code data which used the public key, or data transmission 
and reception etc. The outline of a format of a public key certificate is shown in drawing 
9(a). 

[0055] A version (version) shows the version of a certificate format. The serial number 
of a certificate is a serial number (Serial Number), and is the serial number of the public 
key certificate set up by the public key certificate issue station (CA). A signature 
algorithm identifier and an algorithm parameter (Signature algorithm Identifier algorithm 
parameter) are the fields which record the signature algorithm and parameter of a public 
key certificate. In addition, when there are an elliptic curve cryptosystem and RSA and 
the elliptic curve cryptosystem is applied as a signature algorithm, a parameter and key 
length are recorded, and key length is recorded when RSA is applied. The identifier of 
an issue office is the field where the publisher of a public key certificate, i.e., the name 
of a public key certificate issue office (CA), is recorded in an identifiable format 
(Distinguished Name). The initiation time and termination time whose expiration date 
(validity) of a certificate is an expiration date of a certificate are recorded. The identifier 
of the authentication candidate whose user name (ID) of a public key certificate is a 
user is recorded. Specifically, they are ID of a user machine, a service provision 
subject's ID, etc. A user public key (subject Public Key Info algorithm subject Public key) 
is the field which stores the key algorithm as a user's public key information, and the key 
information itself. The signature which an issue station attaches is electronic signature 
performed to the data of a public key certificate using the private key of a public key 
certificate issue station (CA), and the user of a public key certificate can verify using the 
public key of a public key certificate issue station (CA), and can check the alteration 
existence of a public key certificate. 

[0056] The generation method of electronic signature using a public key cryptosystem is 
explained using drawing 10 . The processing shown in drawing 10 is the generation 
processing flow of the electronic signature data which used EC-DSA (Elliptic Curve 
Digital SignatureAlgorithm) (IEEE P1363/D3). In addition, the example which used the 
elliptic curve cryptosystem (Elliptic Curve Cryptography (hereafter referred to as ECC)) 
as public key encryption here is explained, in addition, in the data processor of this 
invention, it is also possible to use RSA cryptograph (Rivest, Shamir, Adleman), such as 
etc. (ANSI X9.31), in the same public key cryptosystem besides an elliptic curve 
cryptosystem. 
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[0057] Each step of drawing 10 is explained. It sets to step S1 and is the multiplier 
(elliptic curve: let the base point on an elliptic curve, and r into the order of G, and let Ks 
be a private key (0<Ks<r) for four a3+27b2!=0 (mod p) and G.) of an elliptic curve about 
the characteristic, and a and b in p. Step S2 The hash value of Message M is calculated 
by setting, and it considers as f=Hash (M). 

[0058] Here, how to calculate a hash value using a Hash Function is explained. A Hash 
Function is a function which considers a message as an input, compresses this into the 
data of predetermined bit length, and is outputted as a hash value. It is difficult for a 
Hash Function to predict an input from a hash value (output), and when 1 bit of the data 
inputted into the Hash Function changes, discovering different input data which many 
bits of a hash value change and has the same hash value has the difficult description. 
As a Hash Function, MD4, MD5, SHA-1 , etc. may be used and DES-CBC may be used. 
In this case, MAC (check value: it is equivalent to ICV) used as a final output value 
serves as a hash value. 

[0059] Continuously, at step S3, a random number u (0<u<r) is generated and the 
coordinate V (Xv, Yv) which doubled the base point u by step S4 is calculated. In 
addition, the addition on an elliptic curve and 2 double ** are defined as follows. 
[0060] 

[Equation 1] When P= (Xa, Ya), Q= (Xb, Yb), and R=(Xc, Yc) =P+Q, it is Xc=lambda 2-2 
XaYc=lambda x(Xa-Xc)-Yalambda=(3 (Xa) 2+a)/(2Ya) [0061] at the time (2 double **) of 
Xc=lambda 2-Xa-XbYc=lambda x(Xa-Xc)-Yalambda=(Yb-Ya)/(Xb-Xa)P=Q at the time of 
P!=Q (addition), u times of Point G are calculated using these (although a rate is slow, it 
carries out as follows as the most intelligible operation approach.). G, 2xG, and 4xG .. is 
calculated and 2 ixG (value which 2-double-**(ed) G i times (bit position when counting i 
from LSB of u)) corresponding to the place carries out binary number expansion of the u, 
and 1 stands is added. 

[0062] At step S5, c=Xvmod r is calculated and it judges whether this value is set to 0 at 
step S6, if it is not 0, d=[(f+cKs) /u] mod r will be calculated at step S7, it judges whether 
d is 0 at step S8, and if d is not 0, c and d will be outputted as electronic signature data 
by step S9. If r is assumed to be the die length of 160 bit length, electronic signature 
data serve as 320 bit length. 

[0063] In step S6, when c is 0, it returns to step S3 and a new random number is 
regenerated. Similarly, when d is 0 at step S8, it returns to step S3 and a random 
number is regenerated. 

[0064] Next, the verification approach of electronic signature using a public key 
cryptosystem is explained using drawing 1 1 . step S1 1 - M ~ let the multiplier (elliptic 
curve: y2=x3+ax+b) of an elliptic curve, and G as the base point on an elliptic curve, 
and let [ a message and p / the characteristic, and a and b ] the order of G, G, and 
KsxG be public keys (0<Ks<r) for r. It verifies whether the electronic signature data c 
and d fill 0<c<r and 0<d<r with step S12. When this is being filled, at step S13, the hash 
value of Message M is calculated and it considers as f=Hash (M). Next, h= 1-/d mod r is 
calculated at step S14, and it is h1=fh at step S15. mod r, h2=ch mod r is calculated. 
[0065] In step S16, point P=(Xp, Yp) =h1xG+h2 and KsxG are calculated using hi and 
h2 which were already calculated. Since the electronic signature verification person 
knows a public key G and KsxG, he can do count of the scalar multiple of the point on 
an elliptic curve like step S4 of drawing 10 . And Point P judges whether it is an infinite 
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point at step S17, and if it is not an infinite point, it will progress to step S18 (the 
judgment of an infinite point will be able to be performed at step S16 in fact.). That is, if 
addition of P= (X, Y) and Q= (X, -Y) is performed, lambda cannot be calculated but it will 
have become clear that P+Q is an infinite point. Xp mod r is calculated at step S18, and 
it compares with the electronic signature data c. Finally, when this value is in agreement, 
it progresses to step S19 and electronic signature judges with the right. 
[0066] When electronic signature is judged to be the right, it turns out that data were not 
altered but the person holding the private key corresponding to a public key generated 
electronic signature. 

[0067] In step S12, when the electronic signature data c or d do not fill 0<c<r and 0<d<r, 
it progresses to step S20. Moreover, in step S17, also when Point P is an infinite point, 
it progresses to step S20. In step S18, also when the value of Xp mod r is not in 
agreement with the electronic signature data c, it progresses to step S20 further again. 
[0068] In step S20, when judged with electronic signature not being right, it turns out 
that those who data are altered or hold the private key corresponding to a public key did 
not generate electronic signature. 

[0069] The signature of an issue station is made by the public key certificate, and it has 
become it by signature verification by the public key user with the configuration which 
can check the alteration of a certificate. Return explanation is continued to drawing 9 . 
Drawing 9 (b) is public key certificate:Cert_DEV of the user machine stored in a user 
machine, and stores the public key KpDEV of the user machine ID and a user machine. 
Drawing 9 (c) is public key certificate:Cert_SHOP of the shop server stored in a shop 
server, and stores the public key KpSHOP of Shop ID and a shop server. Drawing 9 (d) 
is public key certificate:Cert_DAS of the user machine authentication server stored in a 
user machine authentication server, and stores user machine authentication server ID 
and the public key KpDAS of a user machine authentication server. Thus, a user 
machine, a shop server, and a user machine authentication server hold a public key 
certificate, respectively. 

[0070] [Contents purchase processing], next the processing whose return and user 
machine purchase and use contents for drawing 1 from a shop server are explained. 
Processing advances in order of (20) from the number (1) of drawing 1 . The detail of 
processing is explained to each numerical order. In addition, although this example has 
described what performed mutual recognition processing ((1), (7), (11)) in the 
communication link between entities, you may omit if needed. 
[0071] (1) The user machine 200 which is going to purchase mutual recognition 
contents from the shop server 100 performs mutual recognition processing between 
shop servers. Between two means to perform data transmission and reception, it is 
performed that a partner checks mutually whether you are a right data communication 
person, and performs required data transfer mutually after that. Check processing of 
whether a partner is a right data communication person is mutual recognition 
processing. The configuration which performs encryption processing by using as a 
share key the session key which performed generation of a session key and was 
generated at the time of mutual recognition processing, and performs data transmission 
is one desirable data transfer method. 

[0072] The mutual recognition approach using a common key encryption system is 
explained using drawing 12 . In drawing 12 , although DES is used as a common key 
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encryption system, as long as it is the same common key encryption system, any are 
sufficient. 

[0073] First, B generates the random number Rb which is 64 bits, and transmits ID (b) 
which is Rb and self ID to A. A which received this newly generates the 64-bit random 
number Ra, in order of Ra, Rb, and ID (b), Key Kab is used for it in the CBC mode of 
DES, it enciphers data, and returns them to B. 

[0074] B which received this decrypts received data with Key Kab. First, the decryption 
approach of received data decrypts a cipher E1 with Key Kab, and obtains a random 
number Ra. Next, a cipher E2 is decrypted with Key Kab, the exclusive OR of E1 is 
carried out to the result, and Rb is obtained. Finally, a cipher E3 is decrypted with Key 
Kab, the exclusive OR of E2 is carried out to the result, and ID (b) is obtained. In this 
way, Rb and ID (b) verify whether it is in agreement with what B transmitted among Ra, 
Rb(s), and ID (b) which were obtained. When it passes in this verification, B attests A as 
a just thing. 

[0075] Next, B generates the session key (Session Key (hereafter referred to as Kses)) 
used after authentication (a random number is used for a generation method). And in 
order of Rb, Ra, and Kses, in the CBC mode of DES, Key Kab is used, it enciphers, and 
A is returned. 

[0076] A which received this decrypts received data with Key Kab. Since the decryption 
approach of received data is the same as that of decryption processing of B, a detail is 
omitted here. In this way, Rb and Ra verify whether it is in agreement with what A 
transmitted among Rb(s), Ra, and Kses(es) which were obtained. When it passes in this 
verification, A attests B as a just thing. After attesting the partner of each other, the 
session key Kses is used as a common key for the secret communication after 
authentication. 

[0077] In addition, when injustice and an inequality are found on the occasion of 
verification of received data, processing is interrupted as that in which mutual 
recognition failed. 

[0078] Next, the mutual recognition approach using the elliptic curve cryptosystem of 
the 160 bit length which is a public key cryptosystem is explained using drawing 13 . In 
drawing 13 , although ECC is used as a public key cryptosystem, as long as it is the 
public key cryptosystem same as mentioned above, any are sufficient. Moreover, key 
size may not be 160 bits, either. In drawing 13 , first, B generates the 64-bit random 
number Rb, and transmits to A. A which received this newly generates the 64-bit 
random number Ra and the random number Ak smaller than Characteristic p. And point 
Av=AkxG which doubled the base point G Ak is calculated, electronic signature A.Sig to 
Ra, Rb, and Av (X coordinate and Y coordinate) is generated, and B is returned with the 
public key certificate of A. Here, since 64 bits, and the X coordinate and Y coordinate of 
Av are 160 bits, Ra and Rb generate the electronic signature to a total of 448 bits, 
respectively. 

[0079] In case a public key certificate is used, using the public key of the public key 
certificate issue station (CA) 410 which self holds, a user verifies the electronic 
signature of the public key certificate concerned, after he succeeds in verification of 
electronic signature, he picks out a public key from a public key certificate, and uses the 
public key concerned. Therefore, all the users using a public key certificate need to hold 
the public key of a common public key certificate issue station (CA). In addition, about 
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the verification approach of electronic signature, since drawing 1 1 explained, the detail 
is omitted. 

[0080] It verifies whether B of Rb which A has transmitted which received the public key 
certificate of A, Ra, Rb and Av, and electronic signature A.Sig corresponds with what B 
generated. Consequently, when in agreement, the electronic signature in the public key 
certificate of A is verified with the public key of a certificate authority, and the public key 
of A is taken out. And electronic signature A.Sig is verified using the taken-out public 
key of A. After succeeding in verification of electronic signature, B attests A as a just 
thing. 

[0081] Next, B generates the random number Bk smaller than Characteristic p. And 
point Bv=BkxG which doubled the base point G Bk is calculated, electronic signature 
B.Sig to Rb, Ra, and Bv (X coordinate and Y coordinate) is generated, and A is returned 
with the public key certificate of B. 

[0082] It verifies whether A of Ra which B has transmitted which received the public key 
certificate of B, Rb, Ra and Bv, and electronic signature B.Sig corresponds with what A 
generated. Consequently, when in agreement, the electronic signature in the public key 
certificate of B is verified with the public key of a certificate authority, and the public key 
of B is taken out. And electronic signature B.Sig is verified using the taken-out public 
key of B. After succeeding in verification of electronic signature, A attests B as a just 
thing. 

[0083] When both succeed in authentication, B calculates BkxAv (although Bk is a 
random number, since Av is a point on an elliptic curve, scalar multiple count of the 
point on an elliptic curve is the need), and A calculates AkxBv, and after using 64 bits of 
low order of the X coordinate of these points as a session key, it is used for a 
communication link (when a common key encryptosystem is made into the common key 
encryptosystem of 64-bit key length). Of course, a session key may be generated from 
Y coordinate and you may not be 64 bits of low order. In addition, transmit data is not 
only enciphered with a session key, but electronic signature may be attached in the 
secret communication after mutual recognition. 

[0084] When injustice and an inequality are found on the occasion of verification of 
electronic signature, or verification of received data, processing is interrupted as that in 
which mutual recognition failed. 

[0085] In such mutual recognition processing, using the generated session key, transmit 
data is enciphered and data communication is performed mutually. 
[0086] (2) If Transaction ID, purchase requested data generation and the (3) purchase 
requested data transmitting above-mentioned shop server 100, and the mutual 
recognition between the user machines 200 are successful, the user machine 200 will 
generate the purchase requested data of contents. The configuration of purchase 
requested data is shown in drawing 14 (a). Purchase requested data has each data of 
the content ID as an identifier of the transaction ID which the cipher-processing means 
of the user machine 200 generates based on a random number as an identifier of the 
shop ID which is the identifier of the shop server 100 which is the demand place of 
contents purchase, and contents dealings, and the contents of which a user machine 
expects purchase further, and the electronic signature of the user machine to these data 
is added. Furthermore, the public key certificate of a user machine is attached to 
purchase requested data, and it is sent to the shop server 100. In addition, in the above- 
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mentioned mutual recognition processing or processing of the before, a public key 
certificate does not already need to send anew necessarily, when finishing [ sending to 
a shop side ]. 

[0087] (4) The shop server 100 which received the purchase requested data shown in 
received-data verification drawing 14 (a) from the user machine 200 performs 
verification processing of received data. The detail of verification processing is 
explained using drawing 15 . First, the shop server 100 verifies public key certificate 
CerLDEV of the user machine in received data (S51). As mentioned above, this is 
performed as processing (refer to drawing 1 1 ) which verifies the signature of the issue 
office (CA) included in a public key certificate, and is performed with the application of 
public key:KpCA of an issue office. 

[0088] If the alteration of O.K., i.e., a public key certificate, does not have verification 
and it will be judged (it is Yes at S52), it will progress to S53. When verification is not 
materialized (it is No at S52), it is judged with those with an alteration by the public key 
certificate by S57, and processing using the public key certificate is stopped. Public 
key:KpDEV of a user machine is taken out from a public key certificate, and verification 
processing (refer to drawing 1 1 ) of a user machine signature of the purchase requested 
data using public key:KpDEV is performed at step S54 S53. If the alteration of O.K., i.e., 
purchase requested data, does not have verification and it will be judged (it is Yes at 
S55), it will progress to S56 and will be judged with received data being just contents 
purchase requested data. When verification is not materialized (it is No at S55), 
purchase requested data is judged to be those with an alteration, and the processing to 
the purchase requested data is stopped by S57. 

[0089] (5) In encryption contents and the encryption contents key data 1 (shop) 
transmitting shop server 100, verification of purchase requested data is completed, and 
if it judges with it being the just contents purchase demand without a data alteration, the 
shop server 100 will transmit encryption contents and the encryption contents key data 
1 (shop) to a user machine. Encryption contents:Kc (content) which each of these is 
data stored in the contents database 1 1 0, and enciphered contents by the contents key, 
and a contents key: It is encryption contents key data:KpDAS (Kc) which enciphered Kc 
with the public key of the user machine authentication server (DAS) 300. 
[0090] The configuration of the encryption contents key data 1 (shop) is shown in 
drawing 14 (b). The encryption contents key data 1 (shop) have shop processing No. 
which the shop server 100 generated with the user machine ID which is the identifier of 
the user machine 200 which is the demand origin of contents purchase, purchase 
requested data (data except the user machine public key certificate of drawing 14 (a)), 
and contents dealings, and encryption contents key data:KpDAS (Kc), and the 
electronic signature of the shop server 100 to these data is added. Furthermore, the 
public key certificate of the shop server 100 is attached to the encryption contents key 
data 1 (shop), and it is sent to the user machine 200. In addition, in the above- 
mentioned mutual recognition processing or processing of the before, a shop server 
public key certificate does not already need to send anew necessarily, when finishing 
[ sending to a user machine side ]. 

[0091] (6) From the received-data verification shop server 100 to encryption contents : 
the user machine 200 which received the encryption contents key data 1 (shop) 
indicated to be Kc (content) to drawing 14 (b) performs verification processing of the 
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encryption contents key data 1 (shop). This verification processing is the same 
processing as the processing flow of drawing 15 explained previously, and the user 
machine 200 performs verification of the public key certificate of the shop server first 
received from the shop server 100 using the public key KpCA of an issue office (CA), 
and performs verification of a shop signature of the encryption contents key data 1 
(shop) shown in drawing 14 (b) using the public key KpSHOP of a shop server picked 
out from the public key certificate next. 

[0092] (7) After the mutual recognition user machine 200 receives encryption 
contents:Kc (content) and the encryption contents key data 1 (shop) from the shop 
server 100 and finishes verification of the encryption contents key data 1 (shop), the 
user machine 200 accesses the user machine authentication server 300, and performs 
mutual recognition processing between the user machine 200 and the user machine 
authentication server 300. This processing is performed in the same procedure as the 
above-mentioned shop server 100 and the mutual recognition processing between the 
user machines 200. 

[0093] (8) If it obtains in encryption contents key data (user machine) and an encryption 
contents key, or ** and the mutual recognition between the demand sending-user 
machine 200 and the user machine authentication server 300 is materialized, to the 
user machine authentication server 300, the user machine 200 will be obtained in the 
encryption contents key data (user machine) containing the encryption contents key 
KpDAS (Kc) previously received from the shop server 100, and an encryption contents 
key or **, and will transmit a demand. 

[0094] The configuration of encryption contents key data (user machine) is shown in 
drawing 14 (c). Encryption contents key data (user machine) have encryption contents 
key data (data except the shop public key certificate of drawing 14 (b)) which obtained 
in an encryption contents key or ** and were received from user machine authentication 
server ID which is the identifier of the user machine authentication server 300 which is 
the demand place of a demand, and the shop server 100, and the electronic signature 
of the user machine 200 to these data is added. Furthermore, the public key certificate 
of the shop server 1 00 and the public key certificate of the user machine 200 are 
attached to encryption contents key data (user machine), and it is sent to the user 
machine authentication server 300. In addition, when the user machine authentication 
server 300 has already held the user machine public key certificate and the shop server 
public key certificate, it is not necessary to necessarily send anew. 
[0095] (9) Obtain the user machine authentication server 300 which obtained from the 
received-data verification user machine 200 in encryption contents key data (user 
machine) and an encryption contents key, or **, and received the demand ( drawing 14 
(c)) in an encryption contents key or **, and it performs verification processing of a 
demand. This verification processing is the same processing as the processing flow of 
drawing 15 explained previously. The user machine authentication server 300 
Verification of the public key certificate of the user machine first received from the user 
machine 200 is performed using the public key KpCA of an issue station (CA). Next, 
verification of the electronic signature of the encryption contents key data (user 
machine) shown in the purchase requested data and drawing 14 (c) which are shown in 
drawing 14 (a) is performed using the public key KpDEV of the user machine picked out 
from the public key certificate. Furthermore, verification of the public key certificate of a 
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shop server is performed using the public key KpCA of an issue office (CA), and 
verification of a shop signature of (5) encryption contents key data 1 contained in the 
encryption contents key data (user machine) shown in drawing 14 (c) using the public 
key KpSHOP of a shop server picked out from the public key certificate next is 
performed. 

[0096] (10) Obtain in an encryption contents key or ** and set to processing and the 
user machine authentication server 300. If it judges with it obtaining in the encryption 
contents key data (user machine) and the encryption contents key, or ** which received 
from the user machine 200, and verification of a demand being completed, and it 
obtaining in a just key or **, and being a demand The encryption contents key with 
which the user machine authentication server 300 is contained in encryption contents 
key data (user machine), Namely, a contents key : Decode data:KpDAS (Kc) which 
enciphered Kc with the public key KpDAS of the user machine authentication server 
(DAS) 300 with the private key KsDAS of the user machine authentication server 300, 
and the contents key Kc is acquired, further the contents key Kc public key [ of a 
user machine ]: - encryption contents key: enciphered by KpDEV - KpDEV (Kc) is 
generated. That is, it obtains in the key or ** of KpDAS(Kc) ->Kc->KpDEV (Kc), and 
processing is performed. 

[0097] It obtains in the encryption contents key or ** performed by drawing 16 in the 
user machine authentication server 300, and the flow of processing is shown. First, the 
user machine authentication server 300 takes out contents key data:KpDAS (Kc) 
enciphered with the public key KpDAS of the user machine authentication server (DAS) 
300 from the encryption contents key data (user machine) received from the user 
machine 200 (S61). Next, it decodes with the private key KsDAS of the user machine 
authentication server 300, and the contents key Kc is acquired (S62). Next, the contents 
key Kc acquired by decode is re-enciphered by public key:KpDEV of a user machine, 
and encryption contents key:KpDEV (Kc) is generated (S63). Termination of these 
processings sets up the status of a license management database (refer to drawing 6 ) 
for "obtaining in a key or ** and completing." 

[0098] (1 1) In the mutual recognition user machine authentication server 300, if it 
obtains in the above-mentioned key or above-mentioned ** of an encryption contents 
key and processing is completed, the user machine authentication server 300 will 
access the shop server 100, and will perform mutual recognition processing between 
the user machine authentication server 300 and the shop server 100. This processing is 
performed in the same procedure as the above-mentioned shop server 100 and the 
mutual recognition processing between the user machines 200. 
[0099] (12) If the mutual recognition between the encryption contents data sending-user 
machine authentication server 300 and the shop server 100 is materialized, the user 
machine authentication server 300 will transmit encryption contents key data (DAS) to 
the shop server 100. 

[0100] The configuration of encryption contents key data (DAS) is shown in drawing 17 
(d). The shop ID which is the identifier of the shop server 100 whose encryption 
contents key data (DAS) are the demand place of contents purchase It obtains in 
encryption contents key data (user machine) (data except the shop of drawing 14 (c), 
and a user machine public key certificate), and the further above-mentioned key or *\ 
By processing Encryption contents key data which the user machine authentication 
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server 300 generated: It has KpDEV (Kc) and the electronic signature of the user 
machine authentication server 300 to these data is added. Furthermore, the user 
machine authentication server 300 and the public key certificate of the user machine 
200 are attached to encryption contents key data (DAS), and it is sent to the shop 
server 100. In addition, when a shop server is already possession ending, it does not 
necessarily need to send these public key certificates anew. 

[0101] Moreover, when it is the existence accepted to be the independent organization 
which can trust the user machine authentication server 300 Without considering as the 
data configuration which contains (8) encryption contents key data (user machine) 
which the user machine generated as it is, as shown in drawing 17 (d), as shown in 
drawing 18 (d 1 ), encryption contents key data (DAS) The user machine authentication 
server 300 extracts each data of the contents key KpDEV (Kc) enciphered with the 
public key of the user machine ID, Transaction ID, content ID, the shop processing NO, 
and a user device. A signature is added to these and it is good also as encryption 
contents key data (DAS). In this case, since verification of (8) encryption contents key 
data (user machine) becomes unnecessary, the public key certificate to attach is good 
only with the public key certificate of the user machine authentication server 300. 
[0102] (13) The shop server 100 which received encryption contents key data (DAS) 
( drawing 17 (d)) from the received-data verification user machine authentication server 
300 performs verification processing of encryption contents key data (DAS). This 
verification processing is the same processing as the processing flow of drawing 15 
explained previously. The shop server 100 Verification of the public key certificate of the 
user machine authentication server first received from the user machine authentication 
server 300 is performed using the public key KpCA of an issue station (CA). Next, 
verification of the electronic signature of the encryption contents key data (DAS) shown 
in drawing 17 (d) using the public key KpDAS of the user machine authentication server 
300 picked out from the public key certificate is performed. Furthermore, verification of 
the public key certificate of a user machine is performed using the public key KpCA of 
an issue office (CA), and verification of a user machine signature of (8) encryption 
contents key data (user machine) contained in the encryption contents key data (DAS) 
shown in drawing 17 (d) using the public key KpDEV of the user machine picked out 
from the public key certificate next is performed. Furthermore, you may make it verify 
encryption contents data (user machine) again using the self public key KpSHOP. 
[0103] In addition, when the shop server 100 receives the encryption contents key data 
(DAS) which were explained previously and which drawing 18 (d 1 ) simplified The shop 
server 100 performs verification of the public key certificate of a user machine 
authentication server using the public key KpCA of an issue station (CA). Next, it 
becomes processing of only performing verification of the electronic signature of the 
encryption contents key data (DAS) shown in drawing 18 (d 1 ) using the public key 
KpDAS of the user machine authentication server 300 picked out from the public key 
certificate. 

[0104] (14) Mutual recognition and (15) encryption contents key requested data 
transmission, next the user machine 200 transmit encryption contents key requested 
data to the shop server 100. In addition, when performing a demand in a different 
session from a pre- demand in this case, mutual recognition is performed again and 



24 



encryption contents key requested data is transmitted to the shop server 100 from the 
user machine 200 a condition [ mutual recognition having been materialized ]. 
[0105] The configuration of encryption contents key requested data is shown in drawing 
17 (e). The shop ID which is the identifier of the shop server 100 whose encryption 
contents key requested data is the demand place of contents purchase The transaction 
ID which is the identifier of the contents dealings which the user machine 200 generated 
previously Furthermore, the content ID as an identifier of the contents of which a user 
machine expects purchase, Furthermore, it has shop processing No. contained in the 
data (refer to drawing 14 (b)) which the shop generated previously and have been 
transmitted to the user machine 200 as encryption contents key data 1 (shop), and the 
electronic signature of the user machine to these data is added. Furthermore, the public 
key certificate of a user machine is attached to encryption contents key requested data, 
and it is sent to the shop server 100. In addition, a public key certificate does not 
necessarily need to send anew, when finishing [ the storage to a shop side ] already. 
[0106] (16) Verification processing and the shop server 100 which received (17) 
accounting encryption contents key requested data from the user machine perform 
verification processing of encryption contents key requested data. This is the processing 
same with having explained using drawing 15 . If data verification ends, the shop server 
100 will perform accounting about dealings of contents. Accounting is processing which 
receives a contents tariff from a user's dealings account. The received contents tariff is 
distributed to various persons concerned, such as a copyright person of contents, a 
shop, and a user machine authentication server manager. 
[0107] By the time it results in this accounting, since the treatment process is 
indispensable, the shop server 100 cannot perform accounting by processing only 
between user machines by obtaining in the key or ** of an encryption contents key by 
the user machine authentication server 300. Moreover, since decode of an encryption 
contents key cannot be performed in the user machine 200, use of contents cannot be 
performed. The contents of contents dealings which the user machine authentication 
server obtained in all keys or ** in the user machine authentication server license 
management database explained using drawing 6 , and performed processing are 
recorded, and the grasp of the contents dealings used as all the candidates for 
accounting is attained. Therefore, the contents dealings by the shop side independent 
become impossible, and an unjust contents sale is prevented. 
[0108] (18) After the accounting in the encryption contents key data 2 (shop) 
transmitting shop server 100 is completed, the shop server 100 transmits the encryption 
contents key data 2 (shop) to the user machine 200. 

[0109] The configuration of the encryption contents key data 2 (shop) is shown in 
drawing 17 (f). The encryption contents key data 2 (shop) have encryption contents key 
data (DAS) (data except the user machine of drawing 17 (d), and a user machine 
authentication server public key certificate) received from the user machine ID which is 
the identifier of the user machine 200 which is the demand origin of an encryption 
contents key demand, and the user machine authentication server 300, and the 
electronic signature of the shop server 100 to these data is added. Furthermore, the 
public key certificate of the shop server 100 and the public key certificate of the user 
machine authentication server 300 are attached to the encryption contents key data 2 
(shop), and it is sent to the user machine 200. In addition, when the user machine 200 
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has already held the user machine authentication server public key certificate and the 
shop server public key certificate, it is not necessary to necessarily send anew. 
[01 10] In addition, when it is the existence accepted to be the independent organization 
which can trust the user machine authentication server 300 and the encryption contents 
key data (DAS) which the shop server 100 receives from the user machine 
authentication server 300 are encryption contents key data (DAS) which were explained 
previously and which drawing 18 (d') simplified, the shop server 100 sends the 
encryption contents key data 2 (shop) shown in drawing 18 (f) to a user machine. That 
is, the public key certificate of the shop server 100 and the public key certificate of the 
user machine authentication server 300 are attached to the data which added the 
signature of a shop server to the simplified encryption contents key data (DAS) which 
are shown in drawing 18 (d 1 ), and it sends to the user machine 200. 
[01 1 1] (19) From the received-data verification shop server 100, the user machine 200 
which received the encryption contents key data 2 (shop) performs verification 
processing of the encryption contents key data 2 (shop). This verification processing is 
the same processing as the processing flow of drawing 15 explained previously, and the 
user machine 200 performs verification of the public key certificate of the shop server 
first received from the shop server 100 using the public key KpCA of an issue office 
(CA), and performs verification of the electronic signature of the encryption contents key 
data 2 (shop) shown in drawing 17 (f) using the public key KpSHOP of the shop server 
100 picked out from the public key certificate next. Furthermore, verification of the public 
key certificate of the user machine authentication server 300 is performed using the 
public key KpCA of an issue office (CA), and signature verification of (12) encryption 
contents key data (DAS) contained in the encryption contents key data 2 (shop) shown 
in drawing 17 (f) using the public key KpDAS of the user machine authentication server 
300 picked out from the public key certificate next is performed. You may make it verify 
encryption contents data (user machine) further again using the self public key KpDEV. 
[01 12] (20) The user machine 200 which verified the encryption contents key data 2 
(shop) received from the preservation processing shop server 100 Encryption contents 
key:KpDEV (Kc) enciphered with the self public key KpDEV contained in the encryption 
contents key data 2 (shop) is decoded using the self private key KsDEV. Furthermore, it 
enciphers using the preservation key Ksto of a user machine, encryption contents 
key:Ksto (Kc) is generated, and this is stored in the storage means of the user machine 
200. Encryption contents key:Ksto (Kc) is decoded using the preservation key Ksto, 
using the contents key Kc which took out and took out the contents key Kc, in the 
utilization time of contents, decode processing of the encryption contents Kc (Content) 
is performed, and contents (Content) are reproduced and performed to it. 
[01 13] The acquisition of the contents key Kc and preservation processing flow in the 
user machine 200 are shown in drawing 1 9 . First, the user machine 200 takes out 
encryption contents key:KpDEV (Kc) enciphered with the self public key KpDEV from 
the encryption contents key data 2 (shop) received from the shop server 100 (S71), 
decodes taken-out encryption contents key:KpDEV (Kc) using the self private key 
KsDEV, and takes out the contents key Kc (S72). Furthermore, encryption processing of 
the contents key Kc is performed using the preservation key Ksto of a user machine, 
encryption contents key:Ksto (Kc) is generated, and this is stored in the storage means 
(internal memory) of the user machine 200 (S73). 
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[01 14] By the above processing, a user machine can acquire the contents key Kc of the 
encryption contents Kc (Content) and these encryption contents, and can use contents, 
clear from above-mentioned explanation - as -- the user machine 200 ~ setting 
contents until it results in an available condition - **** - it obtains in the key or ** of 
an encryption contents key in the user machine authentication server 300, and a 
treatment process is indispensable. Therefore, to the user machine 200, the shop 
server 100 cannot sell contents to the user machine authentication server 300 secretly, 
and cannot make contents an available condition in a user machine. A user machine 
authentication server in the user machine authentication server license management 
database explained using drawing 6 All keys, **, or the contents of contents dealings 
that obtained and performed processing is recorded. Management of dealings of all 
shops is made and the charged contents dealings are grasped. It becomes possible to 
distribute correctly the contents tariff received in the accounting of a shop to various 
persons concerned, such as a copyright person of contents, a shop, and a user 
machine authentication server manager. 

[01 15] (Status transition in each device) The shop server 100 and the user machine 200 
which are shown in drawing 1 , and the user authentication server (DAS) 300 opt for the 
next processing in a series of processings which relate to contents dealings, 
respectively according to the status which shows a processing state. The status is 
managed for every contents dealings in the purchase management database of a shop 
server shown in drawing 3 , the license management database of the user machine 
authentication server of drawing 6 , and the purchase management database of the 
user machine of drawing 8 . 

[01 16] First, status transition of the shop server 100 is explained using drawing 20 . 
Processing is started because a shop server receives the contents purchase requested 
data from the user machine 200 (it corresponds to processing (3) of drawing 1 ). The 
shop server 100 sets the status as "the completion of purchase reception", when the 
received data from the user machine 200 are verified and it succeeds in verification, and 
when judgment that it is a just purchase demand is not made by data verification, 
processing is stopped, or the same processing and here the after treatment repeated 
purchase reception processing the number of predetermined times is stopped, and it 
carries out the status as "purchase reception failure." Only when the status is "the 
completion of purchase reception", it progresses to degree step. 
[01 17] If the status changes to "the completion of purchase reception" next, the shop 
server 100 will consider the status as "the completion of key 1 distribution" by 
transmitting the encryption contents key data 1 (shop) to the user machine 200 (it 
corresponding to processing (5) of drawing 1 ). and receiving the reception response 
(response) from a user machine. When transmission of the key data 1 is not successful, 
processing is stopped, or after repeating transmitting processing of the key data 1 the 
number of predetermined times, processing is stopped by the same processing and 
here, and the status is considered as "key 1 distribution failure." Only when the status is 
"the completion of key 1 distribution", it progresses to degree step. 
[01 18] When the status changes to "the completion of key 1 distribution" next, the shop 
server 100 receives encryption contents key data (DAS) from the user machine 
authentication server 300 (it corresponds to processing (12) of drawing 1 ), and 
performs data verification. When it succeeds in verification, the status is set as "the 
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completion of key reception", when judgment that it is just encryption contents key data 
(DAS) is not made by data verification, processing is stopped, or after repeating key 
reception the number of predetermined times, processing is stopped by the same 
processing and here, and the status is considered as "key reception failure." Only when 
the status is "the completion of key reception", it progresses to degree step. 
[01 19] When the status changes to "the completion of key reception" next, the shop 
server 100 receives encryption contents key Request-to-Send data from the user 
machine 200 (it corresponds to processing (15) of drawing 1 ), and performs data 
verification. When it succeeds in verification, the status is set as "the completion of 
encryption contents key Request-to-Send reception", when judgment that it is just key 
Request-to-Send data is not made by data verification, processing is stopped, or after 
repeating the reception of encryption contents key Request-to-Send data the number of 
predetermined times, processing is stopped by the same processing and here, and the 
status is carried out as "encryption contents key Request-to-Send reception failure." 
Only when the status is "the completion of encryption contents key Request-to-Send 
reception", it progresses to degree step. 

[0120] When the status changes to "the completion of encryption contents key Request- 
to-Send reception" next, the shop server 100 performs accounting (it corresponds to 
processing (17) of drawing 1 ). When accounting was completed, the status is set as 
"the completion of accounting" and accounting is not completed (for example, when 
contents tariff pulling down from the designated account of a user machine is not 
completed), subsequent processings are not performed, but stop processing, or after 
they repeat accounting the number of predetermined times, they stop processing by the 
same processing and here, and consider the status as "accounting failure." Only when 
the status is "the completion of accounting", it progresses to degree step. 
[0121] When the status changes to "the completion of accounting" next, the shop server 
100 performs encryption contents key data 2 (shop) transmitting processing (it 
corresponds to processing (18) of drawing 1 ) to a user machine. When encryption 
contents key data 2 (shop) transmitting processing is completed, the receiving response 
from a user machine was received, the status is set as "the completion of key 2 
distribution" and key data 2 (shop) transmitting processing is not completed, the status 
is considered as "key 2 distribution failure." Only when the status is "the completion of 
key 2 distribution", it becomes processing termination degree step and here, and when 
the status is "key 2 distribution failure", subsequent processings are not performed, stop 
processing, or repeat key data 2 (shop) transmitting processing the number of 
predetermined times the same processing and here. The shop server 100 performs 
such a state transition for every contents dealings. 

[0122] Next, status transition of the user machine 200 is explained using drawing 21 . 
Processing is started because the user machine 200 transmits contents purchase 
requested data to the shop server 1 00 first (it corresponds to processing (3) of drawing 
1 ). Processing is stopped, or after repeating purchase demand transmitting processing 
the number of predetermined times, the same processing and here processing stops, 
and a user machine 200 carries out the status as "purchase demand transmitting 
failure", when the status is set up to "the completion of purchase demand transmitting" 
and the response of the completion of reception from the shop server 100 cannot be 
received, if the response of the completion of reception of contents purchase requested 
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data to the shop server 100 is received. Only when the status is "the completion of 
purchase demand transmitting", it progresses to degree step. 
[0123] If the status changes to "the completion of purchase demand transmitting" next, 
from the shop server 100, the user machine 200 will receive the encryption contents key 
data 1 (shop) (it corresponds to processing (5) of drawing 1 ), and will verify received 
data. When it succeeds in verification of the encryption contents key data from the shop 
server 100, the status is set as "the completion of key 1 reception", when judgment that 
it is just encryption contents key data is not made by data verification, processing is 
stopped, or after repeating key 1 reception the number of predetermined times, 
processing is stopped by the same processing and here, and the status is considered 
as "key 1 reception failure." Only when the status is "the completion of key 1 reception", 
it progresses to degree step. 

[0124] When the status changes to "the completion of key 1 reception" next, to the user 
machine authentication server 300, the user machine 200 transmits encryption contents 
key data (user machine) (it corresponds to processing (8) of drawing 1 ), and receives a 
data receiving response. When a data receiving response is received, the status is set 
as "the completion of key transmitting", when not receiving a data receiving response, 
processing is stopped, or after repeating key transmitting processing the number of 
predetermined times, processing is stopped by the same processing and here, and the 
status is considered as "key transmitting failure." Only when the status is "the 
completion of key transmitting", it progresses to degree step. 
[0125] When the status changes to "the completion of key transmitting" next, to the 
shop server 100, the user machine 200 transmits an encryption contents key Request to 
Send (it corresponds to processing (15) of drawing 1 ), and receives a data receiving 
response. When a data receiving response is received, the status is set as "the 
completion of encryption contents key Request-to-Send transmitting", when not 
receiving a data receiving response, after stopping processing or repeating encryption 
contents key Request-to-Send transmitting processing the number of predetermined 
times the same processing and here, processing is stopped and the status is carried out 
as "encryption contents key Request-to-Send transmitting failure." Only when the status 
is "the completion of encryption contents key Request-to-Send transmitting", it 
progresses to degree step. 

[0126] When the status changes to "the completion of encryption contents key Request- 
to-Send transmitting" next, from the shop server 100, the user machine 200 receives the 
encryption contents key data 2 (shop) (it corresponds to processing (18) of drawing 1 ), 
and performs data verification. When it succeeds in data verification, the status is set as 
"the completion of key 2 reception", when it does not succeed in data verification, 
processing is stopped, or after repeating key data 2 (shop) reception the number of 
predetermined times, processing is stopped by the same processing and here, and the 
status is considered as "key 2 reception failure." It becomes processing termination 
when the status is "the completion of key 2 reception." The user machine 200 performs 
such a state transition for every contents dealings. 

[0127] Next, status transition of the user machine authentication server 300 is explained 
using drawing 22 . Processing is started because the user machine authentication 
server 300 receives the encryption contents key data (user machine) from the user 
machine 200 (it corresponds to processing (8) of drawing 1 ). When the user machine 
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authentication server 300 verifies the received data from the user machine 200 and it 
succeeds in verification When the status is set as "the completion of key reception" and 
judgment that it is just data is not made by data verification Processing is stopped, or 
after repeating the reception of encryption contents key data (user machine) the number 
of predetermined times, processing is stopped by the same processing and here, and 
the status is considered as "key reception failure." Only when the status is "the 
completion of key reception", it progresses to degree step. 

[0128] If the status changes to "the completion of key reception" next, the user machine 
authentication server 300 will presuppose the status "is completed [ it obtains in a key or 
** and ]", when obtain, it performs processing (it corresponds to processing (10) of 
drawing 1 ), it obtains in a key or ** and processing is completed, a contents key, **, or. 
Since it does not assume a key, **, or that obtaining goes wrong, status transition of 
"obtaining in a key or ** and completing" exists here. 

[0129] When the status changes "to obtain in a key or ** and complete" next, the user 
machine authentication server 300 transmits encryption contents key data (DAS) to the 
shop server 100 (it corresponds to processing (12) of drawing 1 ), and receives the data 
reception response from the shop server 100. When a data reception response is 
received, the status is set as "the completion of key transmitting", when reception of a 
data reception response is not made, after stopping processing or repeating transmitting 
processing of encryption contents key data (DAS) the number of predetermined times 
the same processing and here, processing is stopped and the status is carried out as 
"key transmitting failure." It becomes processing termination when the status is "the 
completion of key transmitting." The user machine authentication server 300 performs 
such a state transition for every contents dealings. 

[0130] (Contents purchase processing flow) Next, the data transmitting and receiving 
processing performed with the contents purchase demand to a shop server between the 
shop server 100, the user machine 200, and the user machine authentication server 
300 from a user machine is explained according to a flow. A processing flow is divided 
and explained to the following A, B, C, and D. 

[0131] A. Processing between a shop server and a user machine (processing of (1) - (6) 
shown in drawing 1 ) 

Transmission of the key 1 (shop) to the user machine 200 from the contents purchase 
demand to the shop server 100 from the user machine 200, and the mutual recognition 
of the shop server 1 00 - the user machine 200 - the shop server 1 00. 

B. Processing between a user machine authentication server and a user machine 
(processing of (7) - (9) shown in drawing 1 ) 

Received-data verification in the mutual recognition [ of the user machine 200 and the 
user machine authentication server 300 ] encryption contents key data transmission - 
user machine authentication server 300. 

C. Processing between a user machine authentication server and a shop server 
(processing of (1 1 ) - (1 3) shown in drawing 1 ) 

Received-data verification in a mutual recognition [ between the user machine 
authentication server 300 and the shop server 100 ] encryption contents key data (DAS) 
transmission - shop server. 

D. Processing between a shop server and a user machine (processing of (14) - (19) 
shown in drawing 1 ) 
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Received-data verification in the transmission - user machine 200 of the key 2 (shop) to 
the user machine 200 from the encryption contents key requested data transmission - 
shop server 100 to the shop server 100 from the user machine 200, and the mutual 
recognition of the shop server 100 - the user machine 200. 

[0132] First, the processing between A. shop server and a user machine (processing of 
(1) - (6) shown in drawing 1 ) is explained using drawing 23 and drawing 24 . 
[0133] In drawing 23 and drawing 24 , left-hand side shows processing of a shop server, 
and right-hand side shows processing of a user machine. In addition, in all flows, the 
processing step No of S20xx and a user machine authentication server is shown [ the 
processing step No of a shop server ] for the processing step No of S10xx and a user 
machine as S30xx. 

[0134] First, as shown in drawing 23 , mutual recognition is performed between a shop 
server and a user machine at the time of processing initiation (S1001, S2001). Mutual 
recognition processing is performed as processing explained using drawing 12 or 
drawing 13 . Using the session key generated in mutual recognition processing, transmit 
data is enciphered if needed and data communication is performed. If mutual 
recognition is materialized, a shop server will make new shop processing NO a new 
processing entry, and will add it to a purchase management database (refer to drawing 
3) (S1003). 

[0135] On the other hand, if mutual recognition is materialized, a user machine 
generates the transaction ID applied in these contents dealings based on a random 
number, will make the new transaction ID a new entry, and will add it to a purchase 
database (refer to drawing 8 ) (S2003). Furthermore, a user machine performs 
transmission of the contents purchase requested data to a shop server (S2004), i.e., 
transmission of (3) purchase requested data shown in drawing 14 (a). 
[0136] A shop server receives the contents purchase requested data from a user 
machine (S1004), and performs verification of received data (S1005). Data verification 
is processing according to the processing flow of drawing 11 explained previously. If 
being just data without an alteration of data is admited by verification of received data, 
the response of Reception O.K. will be transmitted to a user machine (S1008), and the 
status of a purchase management database will be set as "the completion of purchase 
reception" by it (S1010). If data are accepted to be unjust data with an alteration by 
verification of received data, the response of Reception NG will be transmitted to a user 
machine (S1007), and the status of a purchase management database will be set as 
"purchase reception failure" by it (S1009). 

[0137] A user machine will set the status of a purchase management database as "the 
completion of purchase demand transmitting", if the response of the reception O.K. from 
a shop server is received (it is Yes at S2005 and S2006), and if the receiving NG 
response from a shop server is received (it is No at S2005 and S2006), it will set the 
status of a purchase management database as "purchase demand transmitting failure." 
[0138] In a shop server, in the status of a purchase management database, generate 
the encryption contents key data 1 (shop) (refer to drawing 14 (b)) after a setup (S1010) 
to "the completion of purchase reception" (S101 1), and a user machine is received. 
Contents key: It is Kc, transmit enciphered encryption contents:Kc (Content) (S1012), 
and transmit further the encryption contents key data 1 (shop) shown in drawing 14 (b) 
(S1013). 
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[0139] Encryption contents as which the user machine enciphered the status of a 
purchase management database from the shop server by contents key:Kc after the 
setup (S2007) to "the completion of purchase demand transmitting": Receive Kc 
(Content) (S2009) and receive the encryption contents key data 1 (shop) ( drawing 14 
(b)) from a shop server further (S2010). 

[0140] A user machine performs verification processing (refer to drawing 1 1 ) of the data 
received at steps S2009 and S2010 (S2021), if being just data without an alteration of 
data is admited by verification of received data, will transmit the response of Reception 
O.K. to a shop server (S2023), and will set the status of a purchase management 
database as "the completion of key 1 reception" by it (S2025). If data are accepted to be 
unjust data with an alteration by verification of received data, after transmitting the 
response of Reception NG to a shop server (S2024) and setting the status of a 
purchase management database as "key 1 reception failure" by it (S2026), connection 
with a shop server is cut (S2027). 

[0141] A shop server receives the response from a user machine (S1021), and when a 
response is O.K., it sets the status of a purchase management database as "a key 1 
distribution success" (S1024). When a response is NG, after setting the status of a 
purchase management database as "key 1 distribution failure" (S1023), connection with 
a user machine is cut (S1 025). 

[0142] In addition, in mutual recognition failure of steps S1002 and S2002, in a setup of 
a setup of "purchase reception failure" of the status of S1009, and "purchase demand 
transmitting failure" of the status of S2008, processing is all stopped, it performs 
processing which cuts connection, and considers it as processing termination. 
[0143] Next, the processing between B. user machine authentication server and a user 
machine (processing of (7) - (9) shown in drawing 1 ) is explained according to the flow 
of drawing 25 . 

[0144] First, mutual recognition is performed between a user machine authentication 
server and a user machine (S3001, S2031). Mutual recognition processing is performed 
as processing explained using drawing 12 or drawing 13 . Using the session key 
generated in mutual recognition processing, transmit data is enciphered if needed and 
data communication is performed. If mutual recognition is materialized, a user machine 
authentication server will add first-time-user machine authentication server processing 
NO to a license management database (refer to drawing 6 ) as a new processing entry 
(S3003). 

[0145] On the other hand, if mutual recognition is materialized, a user machine will 
generate encryption contents key data (user machine) (refer to drawing 14 (c)) (S2033), 
and will transmit them to a user machine authentication server (S2034). 
[0146] A user machine authentication server receives the encryption contents key data 
(user machine) from a user machine (S3004), and performs verification (S3005) of 
received data. Data verification is processing according to the processing flow of 
drawing 1 1 explained previously. If being just data without an alteration of data is 
admited by verification of received data, the response of Reception O.K. will be 
transmitted to a user machine (S3008), and the status of a license management 
database will be set as "the completion of key reception" by it (S3010). If data are 
accepted to be unjust data with an alteration by verification of received data, the 
response of Reception NG will be transmitted to a user machine (S3007), and 
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connection with a user machine will be cut for the status of a license management 
database after a setup (S3009) to "key reception failure" by it (S301 1). 
[0147] If the response of the reception O.K. from a user machine authentication server 
is received (it is Yes at S2035 and S2036), a user machine If the status of a purchase 
management database is set as "the completion of key transmitting" (S2037) and the 
receiving NG response from a user machine authentication server is received (it is No at 
S2035 and S2036) After setting the status of a purchase management database as "key 
transmitting failure" (S2038), connection with a user machine authentication server is 
cut (S2039). 

[0148] In addition, in mutual recognition failure of steps S3002 and S2032, processing is 
stopped, it performs processing which cuts connection, and considers it as processing 
termination. 

[0149] Next, the processing between C. user machine authentication server and a shop 
server (processing of (1 1) - (13) shown in drawing 1 ) is explained according to the flow 
of drawing 26 . 

[0150] First, mutual recognition is performed between a user machine authentication 
server and a shop server (S3021 , S1031). Mutual recognition processing is performed 
as processing explained using drawing 12 or drawing 13 . Using the session key 
generated in mutual recognition processing, transmit data is enciphered if needed and 
data communication is performed. If mutual recognition is materialized, a user machine 
authentication server will generate encryption contents key data (DAS) (refer to drawing 
17 (d)) (S3023), and will transmit to a shop server (S3024). 

[0151] On the other hand, a shop server receives encryption contents key data (DAS) 
(refer to drawing 17 (d)) from a user machine authentication server after formation of 
mutual recognition (S1033), and performs verification (S1034) of received data. Data 
verification is processing according to the processing flow of drawing 1 1 explained 
previously. If being just data without an alteration of data is admited by verification of 
received data, the response of Reception O.K. will be transmitted to a user machine 
authentication server (S1036), and the status of a purchase management database will 
be set as "the completion of key reception" by it (S1038). If data are accepted to be 
unjust data with an alteration by verification of received data, the response of Reception 
NG will be transmitted to a user machine authentication server (S1037), and connection 
with a user machine authentication server will be cut for the status of a purchase 
management database after a setup (S1039) to "key reception failure" by it (S1040). 
[0152] If the response of the reception O.K. from a shop server is received (it is Yes at 
S3025 and S3026), a user machine authentication server If the status of a license 
management database is set as "the completion of key transmitting" (S3028) and the 
receiving NG response from a shop server is received (it is No at S3025 and S3026) 
After setting the status of a license management database as "key transmitting failure" 
(S3027), connection with a user machine authentication server is cut (S3029). 
[0153] In addition, in mutual recognition failure of steps S3022 and S1032, processing is 
stopped, it performs processing which cuts connection, and considers it as processing 
termination. 

[0154] Next, the processing between D. shop server and a user machine (processing of 
(1 4) - (1 9) shown in drawing 1 ) is explained using drawing 27 and drawing 28 . 
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[0155] First, mutual recognition is performed between a shop server and a user 
machine at the time of processing initiation (S1051 , S2051). Mutual recognition 
processing is performed as processing explained using drawing 12 or drawing 13 . 
Using the session key generated in mutual recognition processing, transmit data is 
enciphered if needed and data communication is performed. If mutual recognition is 
materialized, a user machine will generate encryption contents key Request-to-Send 
data (refer to drawing 17 (e)) (S2053), and will transmit them to a shop server (S2054). 
[0156] A shop server receives the encryption contents key Request-to-Send data from a 
user machine (S1054), and performs verification of received data (S1055). Data 
verification is processing according to the processing flow of drawing 1 1 explained 
previously. If being just data without an alteration of data is admited by verification of 
received data, the response of Reception O.K. will be transmitted to a user machine 
(S1058), and the status of a purchase management database will be set as "the 
completion of encryption contents key Request-to-Send reception" by it (S1060). If data 
are accepted to be unjust data with an alteration by verification of received data, the 
response of Reception NG will be transmitted to a user machine (S1057), and the status 
of a purchase management database will be set as "encryption contents key Request- 
to-Send reception failure" by it (S1059). 

[0157] A user machine will set the status of a purchase management database as "the 
completion of encryption contents key Request-to-Send transmitting", if the response of 
the reception O.K. from a shop server is received (it is Yes at S2055 and S2056) 
(S2057), and if the receiving NG response from a shop server is received (it is No at 
S2055 and S2056), it will set the status of a purchase management database as 
"encryption contents key Request-to-Send transmitting failure" (S2058). 
[0158] In a shop server, the encryption contents key data 2 (shop) which generate the 
encryption contents key data 2 (shop) (refer to drawing 17 (f)) after a setup (S1060) to 
"the completion of encryption contents key Request-to-Send reception" (S1061), and 
show the status of a purchase management database to drawing 17 (f) to a user 
machine are transmitted (S1062). 

[0159] A user machine receives the encryption contents key data 2 (shop) ( drawing 1 7 
(f)) for the status of a purchase management database from a shop server after a setup 
(S2057) to "the completion of encryption contents key Request-to-Send transmitting" 
(S2059). 

[0160] A user machine performs verification processing (refer to drawing 11 ) of the data 
received at step S2059 (S2071), if being just data without an alteration of data is 
admited by verification of received data, will transmit the response of Reception O.K. to 
a shop server (S2073), and will set the status of a purchase management database as 
"the completion of key 2 reception" by it (S2075). If data are accepted to be unjust data 
with an alteration by verification of received data, after transmitting the response of 
Reception NG to a shop server (S2074) and setting the status of a purchase 
management database as "key 2 reception failure" by it (S2076), connection with a 
shop server is cut (S2077). 

[0161] A shop server receives the response from a user machine (S1071), and when a 
response is O.K., it sets the status of a purchase management database as "a key 2 
distribution success" (S1074). When a response is NG, after setting the status of a 
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purchase management database as "key 2 distribution failure" (S1073), connection with 
a user machine is cut (S1075). 

[0162] In addition, in mutual recognition failure of steps S1052 and S2052, processing is 
stopped, it performs processing which cuts connection, and considers it as processing 
termination. 

[0163] [the modification of a basic contents distribution model 1] although the 
configuration of contents purchase processing and procedure have explained so far 
based on the configuration of the basic contents distribution model 1 shown in drawing 
1 , if it is a configuration with the policy considered as the configuration which a contents 
key rechips in a user machine authentication server fundamentally, and performs 
processing, it is realizable not only in the configuration shown in drawing 1 but various 
modes Hereafter, various modifications are explained. 

[0164] The configuration shown in drawing 29 is a configuration of having separated the 
function of a shop server and having prepared the shop server and the distribution 
server. Although the shop server 100 receives the contents purchase demand from the 
user machine 200, the distribution server 400 performs contents distribution to the user 
machine 200. In this example, although mutual recognition processing is omitted 
between each entity, mutual recognition processing may be performed like the basic 
contents distribution model 1 . 

[0165] After the shop server 100 receives the purchase requested data from the user 
machine 200, verifies data (processing of drawing 29 (3)) and checks the justification of 
requested data, it performs transmission of a contents distribution demand to the 
distribution server 400 (processing of drawing 29 (4)). The distribution server 400 
transmits the encryption contents and encryption contents key data (distribution server) 
which were picked out from the contents database 410, when the contents distribution 
requested data from the shop server 1 00 is verified and the justification of data is 
checked (processing of drawing 29 (6)). Encryption contents key data (distribution 
server) are the contents key Kc which corresponded to the encryption contents key data 
1 (shop) of the above-mentioned example, and was enciphered with the public key 
KpDAS of a user machine authentication server, i.e., the data containing KpDAS (Kc). 
[0166] The processing after the user machine 200 received encryption contents and 
encryption contents key data (distribution server) from the distribution server 400 
becomes being the same as that of the example based on the configuration shown in 
previous drawing 1 . 

[0167] In this configuration, the shop server 100 receives the contents demand from a 
user machine, is reapplied from the function and user machine authentication server 
which verify the justification, receives a settled encryption contents key, mainly performs 
distribution to a user machine, and does not perform management of the contents itself, 
and distribution. It is a mode suitable for the configuration which transmits a contents 
distribution demand to the distribution server to which one shop server answers a 
contents demand from a user machine to two or more distribution servers used as 
various contents administration, such as a music content distribution server which 
follows, for example, manages music data, and a game contents distribution server 
which manages game contents, and a shop server manages demand contents 
according to a demand. Moreover, since for example, a user machine and a shop 
server are two-way communication by having made it this configuration, the Internet is 
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used, but from a distribution server, to a user machine, since it is one-way 
communication, there is a merit which can use high-speed satellite communication. 
[0168] Drawing 30 is the configuration of having separated the function of a shop server 
like drawing 29 , and having prepared the shop server and the distribution server, and 
although the shop server 100 receives the contents purchase demand from the user 
machine 200, the distribution server 400 performs contents distribution to the user 
machine 200. A different point from the configuration of drawing 29 is a point considered 
as the configuration to which a contents distribution demand is not transmitted from the 
shop server 100 to the distribution server 400, but the user machine authentication 
server 300 transmits a contents distribution demand to the distribution server 400. 
[0169] After the shop server 100 receives the purchase requested data from the user 
machine 200, verifies data (processing of drawing 30 (3)) and checks the justification of 
requested data, it performs transmission of a contents distribution demand to the user 
machine authentication server 300 (processing of drawing 30 (4)). Then, after the user 
machine authentication server 300 verifies data (processing of drawing 30 (5)) and 
checks the justification of requested data, it performs transmission of a contents 
distribution demand to the distribution server 400 (processing of drawing 30 (6)). The 
distribution server 400 transmits the encryption contents and encryption contents key 
data (distribution server) which were picked out from the contents database 410 to the 
user machine 200, when the contents distribution requested data from the user machine 
authentication server 300 is verified and justification is checked (processing of drawing 
30 (8)). Encryption contents key data (distribution server) are the contents key Kc which 
corresponded to the encryption contents key data 1 (shop) of the above-mentioned 
example, and was enciphered with the public key KpDAS of a user machine 
authentication server, i.e., the data containing KpDAS (Kc). 
[0170] The processing after the user machine 200 received encryption contents and 
encryption contents key data (distribution server) from the distribution server 400 
becomes being the same as that of the example based on the configuration shown in 
previous drawing 1 . 

[0171] In this configuration, when the key from the user machine 200 reapplies the user 
machine authentication server 300 and it has a contents purchase demand to the shop 
server 100 before a demand, it becomes possible [ acquiring and managing the user 
machine information which is a contents purchase demand subject ]. Therefore, the key 
from the user machine 200 rechips, and collating processing of whether to be a 
registered contents purchase demand user machine is already attained at the time of 
demand receipt. 

[0172] [1 .3. Basic contents distribution model 2], next a different basic contents 
distribution model 2 from the basic contents distribution model 1 using drawing 31 are 
explained. In the basic contents distribution model 2, data transmission and reception 
are not performed between the user machine 200 and the user machine authentication 
server 300. Each processing (1) - (19) shown in drawing 31 is explained focusing on 
difference with the basic contents distribution model 1 . In addition, although this 
example has described what performed mutual recognition processing ((1), (7), (13)) in 
the communication link between entities, you may omit if needed. 
[0173] (1) The user machine 200 which is going to purchase mutual recognition 
contents from the shop server 100 performs mutual recognition processing between the 
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shop servers 100. Mutual recognition processing is the processing explained using 
drawing 12 or drawing 13 . In mutual recognition processing, using the generated 
session key, transmit data is enciphered if needed and data communication is 
performed. 

[0174] (2) If the mutual recognition between Transaction ID, purchase requested data 
generation, and (3) purchase requested data transmitting shop server 100 and the user 
machine 200 is successful, the user machine 200 will generate the purchase requested 
data of contents. The configuration of purchase requested data is shown in drawing 32 
(g). Purchase requested data has each data of the content ID as an identifier of the 
transaction ID which the cipher-processing means of the user machine 200 generates 
based on a random number as an identifier of the shop ID which is the identifier of the 
shop server 100 which is the demand place of contents purchase, and contents 
dealings, and the contents of which a user machine expects purchase further, and the 
electronic signature of the user machine to these data is added. Furthermore, the public 
key certificate of a user machine is attached to purchase requested data, and it is sent 
to the shop server 100. In addition, in the above-mentioned mutual recognition 
processing or processing of the before, a public key certificate does not already need to 
send anew necessarily, when finishing [ sending to a shop side ]. 
[0175] (4) The shop server 100 which received the purchase requested data shown in 
received-data verification drawing 32 (g) from the user machine 200 performs 
verification processing of received data. The detail of verification processing is as 
having explained using drawing 15 previously. 

[0176] (5) In encryption contents and the purchase reception data transmitting shop 
server 100, verification of purchase requested data is completed, and if it judges with it 
being the just contents purchase demand without a data alteration, the shop server 100 
will transmit encryption contents and purchase reception data to a user machine. 
Encryption contents as which these enciphered contents by the contents key: It is data 
of only indicating it to be Kc (content) to have received the purchase demand, and is 
data which do not contain encryption contents key data:KpDAS (Kc) which enciphered 
previous contents key:Kc with the public key of the user machine authentication server 
(DAS) 300. 

[0177] The configuration of purchase reception data is shown in drawing 32 (h). 
Purchase reception data have shop processing No. which the shop server 100 
generated with the user machine ID which is the identifier of the user machine 200 
which is the demand origin of contents purchase, purchase requested data (data except 
the user machine public key certificate of drawing 32 (g)), and contents dealings, and 
the electronic signature of the shop server 100 to these data is added. Furthermore, the 
public key certificate of the shop server 100 is attached to purchase reception data, and 
it is sent to the user machine 200. In addition, in the above-mentioned mutual 
recognition processing or processing of the before, a shop server public key certificate 
does not already need to send anew necessarily, when finishing [ sending to a user 
machine side ]. 

[0178] (6) From the received-data verification shop server 100 to encryption contents : 
the user machine 200 which received the purchase reception data indicated to be Kc 
(content) to drawing 32 (h) performs verification processing of purchase reception data. 
This verification processing is the same processing as the processing flow of drawing 
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1_5 explained previously, and the user machine 200 performs verification of the public 
key certificate of the shop server first received from the shop server 100 using the public 
key KpCA of an issue office (CA), and performs verification of a shop signature of the 
purchase reception data shown in drawing 32 (h) using the public key KpSHOP of a 
shop server picked out from the public key certificate next. 

[0179] (7) mutual recognition (8) encryption contents key data - 1 (shop) ****, next, the 
shop server 100 accesses the user machine authentication server 300, and performs 
mutual recognition processing between the shop server 100 and the user machine 
authentication server 300. If mutual recognition is materialized, the shop server 100 will 
transmit the encryption contents key data 1 (shop) to the user machine authentication 
server 300. 

[0180] The configuration of the encryption contents key data 1 (shop) is shown in 
drawing 32 (i). The encryption contents key data 1 (shop) have the purchase requested 
data (data except the user machine public key certificate of drawing 32 (g)) and shop 
processing No. which obtained in an encryption contents key or ** and were received 
from user machine authentication server ID which is the identifier of the user machine 
authentication server 300 which is the demand place of a demand, and the user 
machine 200, and the electronic signature of the shop server 100 to these data is added. 
Furthermore, the public key certificate of the shop server 100 and the public key 
certificate of the user machine 200 are attached to the encryption contents key data 1 
(shop), and it is sent to the user machine authentication server 300. In addition, when 
the user machine authentication server 300 has already held the user machine public 
key certificate and the shop server public key certificate, it is not necessary to 
necessarily send anew. 

[0181] (9) The user machine authentication server 300 which received the encryption 
contents key data 1 (shop) ( drawing 32 (i)) from the received-data verification shop 
server 100 performs verification processing of received data. This verification 
processing is the same processing as the processing flow of drawing 15 explained 
previously, and the user machine authentication server 300 performs verification of the 
public key certificate of the shop server first received from the shop server 100 using the 
public key KpCA of an issue office (CA), and performs verification of the electronic 
signature of the encryption contents key data 1 (shop) shown in drawing 32 (i) using the 
public key KpSHOP of a shop server picked out from the public key certificate next. 
Furthermore, verification of the public key certificate of a user machine is performed 
using the public key KpCA of an issue office (CA), and verification of a user machine 
signature of (3) purchase requested data contained in the encryption contents key data 
1 (shop) shown in drawing 32 (i) using the public key KpDEV of the user machine 
picked out from the public key certificate next is performed. 

[0182] (10) Obtain in an encryption contents key or ** and set to the processing user 
machine authentication server 300. When it judges with the verification of the encryption 
contents key data 1 (shop) which received from the shop server 100 being completed, 
and it being just data, the user machine authentication server 300 The encryption 
contents key contained in the encryption contents key data 1 (shop), Namely, a 
contents key : Decode data:KpDAS (Kc) which enciphered Kc with the public key 
KpDAS of the user machine authentication server (DAS) 300 with the private key 
KsDAS of the user machine authentication server 300, and the contents key Kc is 
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acquired, further the contents key Kc - public key [ of a user machine ]: - encryption 
contents key: enciphered by KpDEV - KpDEV (Kc) is generated. That is, it obtains in 
the key or ** of KpDAS(Kc) ->Kc->KpDEV (Kc), and processing is performed. This 
processing is processing according to the flow shown in drawing 16 explained 
previously. 

[0183] (11) Encryption contents data transmission, next the user machine authentication 
server 300 transmit encryption contents key data (DAS) to the shop server 100. 
[0184] The configuration of encryption contents key data (DAS) is shown in drawing 33 
(j). The shop ID which is the identifier of the shop server 100 whose encryption contents 
key data (DAS) are the demand place of contents purchase It obtains in the encryption 
contents key data 1 (shop) (data except the shop of drawing 32 (i), and a user machine 
public key certificate), and the further above-mentioned key or **. By processing 
Encryption contents key data which the user machine authentication server 300 
generated: It has KpDEV (Kc) and the electronic signature of the user machine 
authentication server 300 to these data is added. Furthermore, the user machine 
authentication server 300 and the public key certificate of the user machine 200 are 
attached to encryption contents key data (DAS), and it is sent to the shop server 100. In 
addition, when a shop server is already possession ending, it does not necessarily need 
to send these public key certificates anew. 

[0185] Moreover, when it is the existence accepted to be the independent organization 
which can trust the user machine authentication server 300 Without considering as the 
data configuration which contains (8) encryption contents key data 1 (shop) as shown in 
drawing 33 (j) as it is, as shown in drawing 34 (j 1 ), encryption contents key data (DAS) 
The user machine authentication server 300 extracts each data of the contents key 
KpDEV (Kc) enciphered with the public key of Shop ID, the user machine ID, 
Transaction ID, content ID, the shop processing NO, and a user device. A signature is 
added to these and it is good also as encryption contents key data (DAS). The public 
key certificate to attach is a public key certificate of the user machine authentication 
server 300. 

[0186] (12) The shop server 100 which received encryption contents key data (DAS) 
( drawing 33 (])) from the received-data verification user machine authentication server 
300 performs verification processing of encryption contents key data (DAS). This 
verification processing is the same processing as the processing flow of drawing 15 
explained previously. The shop server 100 Verification of the public key certificate of the 
user machine authentication server first received from the user machine authentication 
server 300 is performed using the public key KpCA of an issue station (CA). Next, 
verification of the electronic signature of the encryption contents key data (DAS) shown 
in drawing 33 (j) using the public key KpDAS of the user machine authentication server 
300 picked out from the public key certificate is performed. In addition, same verification 
is performed also when the shop server 100 receives the encryption contents key data 
(DAS) which were explained previously and which drawing 34 (j 1 ) simplified. 
Furthermore, you may make it verify the encryption contents key 1 (shop 1) in the 
encryption contents data (DAS) of drawing 33 G) if needed. 
[0187] (13) Mutual recognition and (14) encryption contents key requested data 
transmission, next the user machine 200 transmit encryption contents key requested 
data to a shop server. In addition, when performing a demand in a different session 
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from a pre- demand in this case, mutual recognition is performed again and encryption 
contents key requested data is transmitted to the shop server 100 from the user 
machine 200 a condition [ mutual recognition having been materialized ]. 
[0188] (15) Verification processing and the shop server 100 which received (16) 
accounting encryption contents key requested data from the user machine perform 
verification processing of encryption contents key requested data. This is the processing 
same with having explained using drawing 15 . If data verification ends, the shop server 
100 will perform accounting about dealings of contents. Accounting is processing which 
receives a contents tariff from a user's dealings account. The received contents tariff is 
distributed to various persons concerned, such as a copyright person of contents, a 
shop, and a user machine authentication server manager. 

[0189] Like the basic model 1 mentioned above, by the time it results in this accounting, 
since the treatment process is indispensable, the shop server 100 cannot perform 
accounting by processing only between user machines by obtaining in the key or ** of 
an encryption contents key by the user machine authentication server 300. Moreover, 
since decode of an encryption contents key cannot be performed in the user machine 
200, use of contents cannot be performed. The contents of contents dealings which the 
user machine authentication server obtained in all keys or ** in the user machine 
authentication server license management database explained using drawing 6 , and 
performed processing are recorded, and the grasp of the contents dealings used as all 
the candidates for accounting is attained. Therefore, the contents dealings by the shop 
side independent become impossible, and an unjust contents sale is prevented. 
[0190] (17) After the accounting in the encryption contents key data 2 (shop) 
transmitting shop server 100 is completed, the shop server 100 transmits the encryption 
contents key data 2 (shop) to the user machine 200. 

[0191] The configuration of the encryption contents key data 2 (shop) is shown in 
drawing 33 (k). The encryption contents key data 2 (shop) have encryption contents key 
data (DAS) (data except the user machine authentication server public key certificate of 
drawing 33 (j)) received from the user machine ID which is the identifier of the user 
machine 200 which is the demand origin of an encryption contents key demand, and the 
user machine authentication server 300, and the electronic signature of the shop server 
100 to these data is added. Furthermore, the public key certificate of the shop server 
100 and the public key certificate of the user machine authentication server 300 are 
attached to the encryption contents key data 2 (shop), and it is sent to the user machine 
200. In addition, when the user machine 200 has already held the user machine 
authentication server public key certificate and the shop server public key certificate, it 
is not necessary to necessarily send anew. 

[0192] In addition, when it is the existence accepted to be the independent organization 
which can trust the user machine authentication server 300 and the encryption contents 
key data (DAS) which the shop server 100 receives from the user machine 
authentication server 300 are encryption contents key data (DAS) which were explained 
previously and which drawing 34 (j 1 ) simplified, the shop server 100 sends the 
encryption contents key data 2 (shop) shown in drawing 34 (k 1 ) to a user machine. That 
is, the public key certificate of the shop server 100 and the public key certificate of the 
user machine authentication server 300 are attached to the data which added the 
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signature of a shop server to the simplified encryption contents key data (DAS) which 
are shown in drawing 34 (]'), and it sends to the user machine 200. 
[0193] (18) From the received-data verification shop server 100, the user machine 200 
which received the encryption contents key data 2 (shop) performs verification 
processing of the encryption contents key data 2 (shop). This verification processing is 
the same processing as the processing flow of drawing 15 explained previously, and the 
user machine 200 performs verification of the public key certificate of the shop server 
first received from the shop server 100 using the public key KpCA of an issue office 
(CA), and performs verification of the electronic signature of the encryption contents key 
data 2 (shop) shown in drawing 33 (k) using the public key KpSHOP of the shop server 
100 picked out from the public key certificate next. Furthermore, verification of the public 
key certificate of the user machine authentication server 300 is performed using the 
public key KpCA of an issue office (CA), and signature verification of (1 1) encryption 
contents key data (DAS) contained in the encryption contents key data 2 (shop) shown 
in drawing 33 Q) using the public key KpDAS of the user machine authentication server 
300 picked out from the public key certificate next is performed. Furthermore, you may 
make it verify the encryption contents key 1 (shop 1 ) in the encryption contents data 
(DAS) of drawing 33 Q) if needed. 

[0194] (19) The user machine 200 which verified the encryption contents key data 2 
(shop) received from the preservation processing shop server 100 Encryption contents 
key:KpDEV (Kc) enciphered with the self public key KpDEV contained in the encryption 
contents key data 2 (shop) is decoded using the self private key KsDEV. Furthermore, it 
enciphers using the preservation key Ksto of a user machine, encryption contents 
key: Ksto (Kc) is generated, and this is stored in the storage means of the user machine 
200. Encryption contents key:Ksto (Kc) is decoded using the preservation key Ksto, 
using the contents key Kc which took out and took out the contents key Kc, in the 
utilization time of contents, decode processing of the encryption contents Kc (Content) 
is performed, and contents (Content) are reproduced and performed to it. 
[0195] Thus, in the basic distribution model 2, between the user machine 200 and the 
user machine authentication server 300, transmission and reception of data are not 
performed but the processing burden of a user machine is mitigated only for the user 
machine 200 performing data transmission and reception between the shop servers 100. 
[0196] [1 .2. Modification] of the basic contents distribution model 2, next the 
modification of the configuration of the basic contents distribution model 2 shown in 
drawing 31 are explained. The configuration shown in drawing 35 is a configuration of 
having separated the function of a shop server and having prepared the shop server 
and the distribution server. Although the shop server 100 receives the contents 
purchase demand from the user machine 200, the distribution server 400 performs 
contents distribution to the user machine 200. With this configuration, mutual 
recognition between the entities which perform data transmission and reception is not 
performed, but each entity performs only signature verification of received data. 
However, the configuration which performs mutual recognition processing is not cared 
about at all between entities like the basic contents distribution model 2. 
[0197]- After the shop server 100 receives the purchase requested data from the user 
machine 200, verifies data (processing of drawing 35 (3)) and checks the justification of 
requested data, it performs transmission of a contents distribution demand to the 
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distribution server 400 (processing of drawing 35 (4)). The distribution server 400 
transmits the encryption contents taken out from the contents database 410, when the 
contents distribution requested data from the shop server 100 is verified and the 
justification of data is checked (processing of drawing 35 (6)). 
[0198] From the distribution server 400, the user machine 200 receives encryption 
contents and transmits encryption contents receipt data to the distribution server 400 
after data verification (processing of drawing 35 (8)). After received-data verification, the 
distribution server 400 is obtained to the user machine authentication server 300 in 
encryption contents key data (distribution server) and an encryption contents key, or **, 
and transmits a demand (processing of drawing 35 (10)). 

[0199] The processing after the user machine authentication server 300 obtained from 
the distribution server 400 in encryption contents key data (distribution server) and an 
encryption contents key, or ** and received the demand becomes being the same as 
that of the example based on the configuration shown in previous drawing 31 except 
having omitted mutual recognition processing. 

[0200] In this configuration, without performing mutual recognition, a user machine 
transmits a contents purchase demand to a shop server, and receives encryption 
contents from a distribution server. The shop server 100 receives the contents demand 
from a user machine, and verifies the justification only based on signature verification. 
Furthermore, it reapplies from a user machine authentication server, a settled 
encryption contents key is received, and the justification is performed by signature 
verification. The distribution server 400 performs signature verification about the 
received data from a shop server, checks data justification, and performs contents 
distribution. 

[0201] The shop server 100 does not perform management of the contents itself, and 
distribution. It is a mode suitable for the configuration which transmits a contents 
distribution demand to the distribution server to which one shop server answers a 
contents demand from a user machine to two or more distribution servers used as 
various contents administration, such as a music content distribution server which 
follows, for example, manages music data, and a game contents distribution server 
which manages game contents, and a shop server manages demand contents 
according to a demand. Moreover, since for example, a user machine and a shop 
server are two-way communication by having made it this configuration, the Internet is 
used, but from a distribution server, to a user machine, since it is one-way 
communication, there is a merit which can use high-speed satellite communication. 
[0202] In this example, mutual recognition is omitted, and since it considered as the 
processing which checks the justification of data only by signature verification, the 
increase in efficiency of processing is realized. 

[0203] Drawing 36 separates the function of a shop server like drawing 35 , and 
prepares a shop server and a distribution server, and it is the configuration of having 
omitted mutual recognition, and the shop server 100 receives the contents purchase 
demand from the user machine 200, and performs signature verification. The 
distribution server 400 performs contents distribution to the user machine 200. A 
different point from the configuration of drawing 35 is a point considered as the 
configuration to which a contents distribution demand is not transmitted from the shop 
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server 100 to the distribution server 400, but the user machine authentication server 
300 transmits a contents distribution demand to the distribution server 400. 
[0204] After the shop server 100 receives the purchase requested data from the user 
machine 200, verifies data (processing of drawing 36 (3)) and checks the justification of 
requested data, it performs transmission of the encryption contents key data 1 (shop) to 
the user machine authentication server 300 (processing of drawing 36 (4)). Then, after 
the user machine authentication server 300 verifies data (processing of drawing 36 (5)) 
and checks the justification of requested data, it performs transmission of a contents 
distribution demand to the distribution server 400 (processing of drawing 36 (6)). The 
distribution server 400 transmits the encryption contents taken out from the contents 
database 410 to the user machine 200, when the contents distribution requested data 
from the user machine authentication server 300 is verified and justification is checked 
(processing of drawing 36 (8)). Future processings become being the same as that of 
the processing based on the configuration shown in previous drawing 35 . 
[0205] In this configuration, when the key from the distribution server 400 reapplies the 
user machine authentication server 300 and it has a contents purchase demand to the 
shop server 100 before a demand, it becomes possible [ acquiring and managing the 
user machine information which is a contents purchase demand subject ]. Therefore, 
the key from the distribution server 400 rechips, and collating processing of whether to 
be a registered contents purchase demand user machine is already attained at the time 
of demand receipt. Moreover, if it considers that he is the engine which can trust DAS, a 
distribution server becomes unnecessary to verify the transmit data of a shop server, 
and can attain the increase in efficiency of processing. 

[0206] as mentioned above - according to [ as explained ] the contents distribution 
configuration of this invention - a user machine -- after encryption contents Kc 
(Content) acquisition and contents - until it results in an available condition - **** it 
obtains in the key or ** of an encryption contents key in a user machine authentication 
server, and a treatment process becomes indispensable. Therefore, to a user machine, 
a shop server cannot notify to a user machine authentication server, cannot sell 
contents, and cannot make contents an available condition in a user machine. A user 
machine authentication server in a user machine authentication server license 
management database (refer to drawing 6 ) All keys, **, or the contents of contents 
dealings that obtained and performed processing is recorded. Management of dealings 
of all shops is possible and the charged contents dealings are grasped. It becomes 
possible to distribute correctly the contents tariff received in the accounting of a shop to 
various persons concerned, such as a copyright person of contents, a shop, and a user 
machine authentication server manager, and the configuration which eliminates unjust 
contents use is realized. 

[0207] [2. Based on use (purchase) of the contents by contents distribution model] using 
an electronic ticket, next the user, the electronic ticket which described the profits 
allocation information to various persons concerned, such as a copyright person of 
contents, a manufacturer, a license electrode holder, and a shop, is published, and the 
configuration which performs profits allocation processing based on the published 
electronic ticket is explained. 

[0208] The system configuration which performs profits allocation based on an 
electronic ticket to drawing 37 is shown. The contents distribution system of drawing 37 
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receives the purchase demand of the contents which a user machine purchases. The 
profits allocation information on the use tariff accompanying contents purchase As the 
key or ** for the ticket issue server (TIS:Ticket Issuer Server) 610 which publishes the 
described electronic ticket, the user machine (DEV) 620 which serves as a contents 
purchase subject, and just contents dealings management, or a management server 
which processes by obtaining the distribution servers (CP:Content Provider) 640, such 
as a content provider (CP) who performs distribution of the functioning user machine 
authentication server (DAS:Device Authentication Server) 630 and contents, - further 
Let the ticket liquidation server (TES:Ticket Exchange Server) 650 which performs 
liquidation processing of the change of a use tariff etc. based on an electronic ticket be 
the main component. 

[0209] (Ticket issue server) The configuration of the ticket issue server (TIS) 610 of the 
contents distribution system of drawing 37 is shown in drawing 38 . The ticket issue 
server 610 receives the purchase demand from the user machine 620, and publishes 
the electronic ticket which described the profits allocation information corresponding to 
the contents used as the candidate for dealings with a purchase demand. 
[0210] The ticket issue server (TIS) 610 has the ticket issue management database 612 
which matches and manages the identifier of the management data of the issue ticket 
accompanying contents dealings, for example, the user machine of a contents sale 
place, a contents identifier, a contents tariff, etc. Furthermore, it has the control means 
613 which performs communications processing with the contents purchase demand 
verification from the user machine 620, control of a ticket issue management database, 
the accounting to the user machine based on a ticket, a user machine, etc., data cipher 
processing further for each communications processing, etc. 

[021 1] The data configuration of the ticket issue management database 612 is shown in 
drawing 39 . Ticket issue processing No. as an identification number which carries out 
internal generation in case, as for the ticket issue management database 612, a ticket 
issue server performs ticket issue processing according to contents dealings, The 
device ID which is the identifier of a user machine which published the contents 
purchase request The transaction ID which carries out generation issue with a user 
vessel as a contents dealings identifier in case dealings between a user machine and a 
ticket issue server are performed The content ID which is the identifier of the contents 
for dealings, the entity which obtains a countervalue based on the electronic ticket 
which the ticket issue server 610 publishes, For example, the ticket use place ID as 
identifiers, such as a copyright person, a license holder, a manager, and the contents 
selling persons concerned It has each information on the status which shows the status 
of the ticket issue in the amount of money as the contents use tariff allocation amount of 
money corresponding to each ticket use place ID, the expiration date of the liquidation 
processing based on a ticket, and the ticket issue server 610, and management 
processing. The status is updated according to advance of two or more processings 
accompanying dealings of contents, although the latter part explains to a detail. 
[0212] As the control means 613 of the ticket issue server 610 is shown in drawing 38 , 
it also has a function as a cipher-processing means and a communications processing 
means, and a control means 613 is constituted by the computer which stored for 
example, the code processing program and the communication link processing program. 
The key data used in cipher processing performed in the cipher-processing means of a 
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control means 613 are stored in the storage means inside a control means secure one. 
As code problem data, such as a cryptographic key which the ticket issue server 610 
stores, there is a public key KpCA of the certificate authority (CA:Certificate Authority) 
as a public key certificate issue station which is the issue engine of private key:KsTIS of 
the ticket issue server 610, public key certificate Cert_TIS of the ticket issue server 610, 
and a public key certificate. 

[0213] The configuration of a control means 613 is a configuration with the control 
means configuration previously explained using drawing 4 , the same configuration 
(CPU:Central Processing Unit), i.e., arithmetic and program control, ROM (Read only 
Memory) and RAM (Random Access Memory), a display, the input section, a storage 
means, a communication interface, etc. 

[0214] (User machine) The user machine (DEV) 620 has the user machine in the 
configuration of drawing 1 , i.e., the configuration of drawing 7 and the same 
configuration. There is a preservation key Ksto applied as an encryption key at the time 
of storing the public key KpCA and contents of a certificate authority (CA:Certificate 
Authority) as a public key certificate issue station which is the issue engine of private 
key:KsDEV of a user machine, public key certificate Cert_DEV of a user machine, and a 
public key certificate in storage means, such as a user machine, for example, a hard 
disk etc., as code problem data, such as a cryptographic key which the user machine 
620 stores. 

[0215] The purchase management database which the user machine 620 in the system 
which performs the ticket management configuration of drawing 37 has serves as a data 
configuration with a ticket function manager. The data configuration of a purchase 
management database is shown in drawing 40 . The transaction ID which carries out 
generation issue with a user vessel in case a purchase management database performs 
contents dealings The ticket issue object ID which is the identifier of a ticket issue object 
which publishes a ticket with the content ID and contents dealings which are the 
identifiers of the contents for dealings It has each information on the status which shows 
the ticket transmission place ID as an identifier of the transmission place entity of the 
point which transmitted ticket issue processing No. which the ticket issue server 610 
sets up, and a ticket, and the status of contents dealings processing [ in / further / a user 
machine ]. The status is updated according to advance of two or more processings 
accompanying dealings of contents, although the latter part explains to a detail. 
[0216] (User machine authentication server) The user machine authentication server 
(DAS) 630 has the user machine authentication server in the configuration of drawing 1 , 
i.e., the configuration of drawing 5 and the same configuration. As code problem data, 
such as a cryptographic key which the user machine authentication server 630 stores, 
there is a public key KpCA of the certificate authority (CA:Certificate Authority) as a 
public key certificate issue station which is the issue engine of private key:KsDAS of a 
user machine authentication server (DAS), public key certificate Cert_DAS of a user 
machine authentication server (DAS), and a public key certificate. 
[0217] The license management database which the user machine authentication 
server 630 in the system which performs the ticket management configuration of 
drawing 37 has serves as a data configuration with a ticket function manager. The data 
configuration of a license management database is shown in drawing 41 . User machine 
authentication server processing No. as a processing identifier in which a license 
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management database carries out internal generation according to the processing to 
which the user machine authentication server (DAS) 630 performs at the time of 
contents dealings, The device ID which is the identifier of a user machine which 
published the contents purchase request The transaction ID which carries out 
generation issue with a user vessel in case contents dealings are performed The ticket 
issue object ID which is the identifier of a ticket issue object which publishes a ticket 
with the content ID and contents dealings which are the identifiers of the contents for 
dealings It has each information on ticket issue processing No. which the ticket issue 
server 610 sets up, and the status which shows the status of the contents dealings 
processing in a user machine authentication server (DAS) further. The status is updated 
according to advance of two or more processings accompanying dealings of contents, 
although the latter part explains to a detail. 

[0218] (Distribution server) The configuration of the distribution server 640 of the 
contents distribution system of drawing 37 is shown in drawing 42 . It is a content 
provider (CP) and the distribution server 640 has the contents database 644 which 
stored the encryption contents key KpDAS (Kc) which enciphered the contents key Kc 
as Kc (Content) which is encryption contents data which enciphered the contents used 
as the candidate for dealings by the contents key by public key:KpDAS of a user 
machine authentication server (DAS:Device Authentication Server). In addition, the 
content ID which is a contents identifier, respectively is added, and Kc (Content) which 
is encryption contents data has an identifiable configuration based on content ID, as 
shown also in drawing. 

[0219] The distribution server 640 has the distribution management database 642 which 
manages the distribution management data of contents further. The distribution 
management database 642 serves as a data configuration with a ticket function 
manager. The data configuration of a purchase management database is shown in 
drawing 43 . In case the distribution management database 642 performs contents 
message distribution processing Distribution server processing No. which the 
distribution server 640 sets up, the content ID which is the identifier of the contents for 
dealings, The ticket issue object ID which is the identifier of a ticket issue object which 
publishes a ticket with the user machine ID as an identifier for distribution of contents, 
and contents dealings It has each information on ticket issue processing No. which a 
ticket issue object sets up, and the status which shows the status of the contents 
dealings processing in a distribution server further. The status is [0220] updated 
according to advance of two or more processings accompanying dealings of contents 
although the latter part explains to a detail. Furthermore, the distribution server 640 has 
the control means 643 which performs extract processing of the distribution contents 
from the contents database 644, generation processing of the dealings data registered 
to the distribution management database 642 accompanying dealings, communications 
processing besides the user machine 620, data cipher processing further for each 
communications processing, etc. As a control means 643 is shown in drawing 42 , it 
also has a function as a cipher-processing means and a communications processing 
means, and a control means 643 is constituted by the computer which stored for 
example, the code processing program and the communication link processing program. 
The key data used in cipher processing performed in the cipher-processing means of a 
control means 643 are stored in the storage means inside a control means secure one. 
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As code problem data, such as a cryptographic key which the distribution server 640 
stores, there is a public key KpCA of the certificate authority (CA:Certificate Authority) 
as a public key certificate issue station which is the issue engine of private key:KsCP of 
the distribution server 640, public key certificate Cert_CP of the distribution server 640, 
and a public key certificate. 

[0221] The configuration of a control means 643 is a configuration with the control 
means configuration previously explained using drawing 4 , the same configuration 
(CPU:Central Processing Unit), i.e., arithmetic and program control, ROM (Read only 
Memory) and RAM (Random Access Memory), a display, the input section, a storage 
means, a communication interface, etc. 

[0222] (Ticket liquidation server) The configuration of the ticket liquidation server (TES) 
650 of the contents distribution system of drawing 37 is shown in drawing 44 . As a 
concrete example which the ticket liquidation server 650 receives an electronic ticket 
from various entities, and performs the liquidation processing based on a ticket, for 
example, account transfer processing, balance modification processing of cybermoney, 
etc. after verification of received data, a setup made into the server in the bank which 
manages the bank account of each entity is possible for the ticket liquidation server 650. 
[0223] The ticket liquidation server 650 has the ticket liquidation management database 
652 which manages the management data of the liquidation processing based on the 
issue ticket accompanying contents dealings. Furthermore, it has the control means 653 
which performs the receiving ticket verification from each entity, control of a ticket 
liquidation management database, communications processing with each entity, data 
cipher processing further for each communications processing, etc. 
[0224] The data configuration of the ticket liquidation management database 652 is 
shown in drawing 45 . Ticket liquidation server processing No. as an identification 
number which carries out internal generation in case, as for the ticket liquidation 
management database 652, a ticket liquidation server performs ticket liquidation 
processing according to a receipt ticket, The liquidation request origin ID as a demand 
subject identifier which has required the liquidation based on a ticket The ticket issue 
object ID which is the identifier, of a ticket issue object which publishes a ticket with 
contents dealings Ticket issue processing No. which the ticket issue server 610 sets up, 
the liquidation amount of money based on a ticket, In case the user machine ID as an 
identifier of the user machine which is the purchase subject of contents, and contents 
dealings are performed, it has each information on the transaction ID which carries out 
generation issue with a user vessel, and the status which shows the status of the 
liquidation processing in a ticket liquidation server further. The status is updated 
according to advance of two or more processings accompanying dealings of contents, 
although the latter part explains to a detail. 

[0225] Furthermore, the ticket liquidation server 650 has the control means 653 which 
performs data generation of the ticket liquidation management database 652, an update 
process, verification processing of a receipt ticket, communications processing with 
various entities, data cipher processing further for each communications processing, etc. 
As a control means 653 is shown in drawing 44 , it also has a function as a cipher- 
processing means and a communications processing means, and a control means 653 
is constituted by the computer which stored for example, the code processing program 
and the communication link processing program. The key data used in cipher 
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processing performed in the cipher-processing means of a control means 653 are 
stored in the storage means inside a control means secure one. As code problem data, 
such as a cryptographic key which the ticket liquidation server 650 stores, there is a 
public key KpCA of the certificate authority (CA:Certificate Authority) as a public key 
certificate issue station which is the issue engine of private key:KsTES of the ticket 
liquidation server 650, public key certificate Cert_TES of the ticket liquidation server 650, 
and a public key certificate. 

[0226] The configuration of a control means 653 is a configuration with the control 
means configuration previously explained using drawing 4 , the same configuration 
(CPU:Central Processing Unit), i.e., arithmetic and program control, ROM (Read only 
Memory) and RAM (Random Access Memory), a display, the input section, a storage 
means, a communication interface, etc. 

[0227] Processing until return and a user machine publish a contents purchase demand 
to a ticket issue server, make contents an available condition, it saves in a user vessel 
and a contents tariff is distributed to [contents purchase processing], next drawing 37 
based on a ticket (liquidation) is explained. Processing advances in order of (32) from 
the number (1) of drawing 37 . The detail of processing is explained to each numerical 
order. 

[0228] (1) The user machine 620 which is going to purchase mutual recognition 
contents performs mutual recognition processing between the ticket issue servers 610. 
Mutual recognition processing is the processing explained using drawing 12 or drawing 
13 . In mutual recognition processing, using the generated session key, transmit data is 
enciphered if needed and data communication is performed. 

[0229] (2) If the mutual recognition between Transaction ID, purchase requested data 
generation, and (3) purchase requested data transmitting ticket issue server 610 and 
the user machine 620 is successful, the user machine 620 will generate the purchase 
requested data of contents. The configuration of purchase requested data is shown in 
drawing 46 (m). Purchase requested data has each data of the content ID as an 
identifier of the transaction ID which the cipher-processing means of the user machine 
620 generates based on a random number as the device ID which is the identifier of the 
user machine 620 which is the demand origin of contents purchase, and an identifier of 
dealings, and the contents of which a user machine expects purchase further, and the 
electronic signature of the user machine to these data is added. Furthermore, the public 
key certificate of a user machine is attached to purchase requested data if needed for 
signature verification. 

[0230] (4) The ticket issue server 610 which received the purchase requested data 
shown in received-data verification drawing 46 (m) from the user machine 620 performs 
verification processing of received data. The detail of verification processing is as 
having explained using drawing 15 previously. 

[0231] (5) The accounting (6) electronic-ticket issue (7) electronic-ticket transmitting 
ticket issue server 610 performs accounting about dealings of contents, and electronic 
ticket issue processing next. These processings are performed as processing which 
publishes the electronic ticket within the dealings amount-of-money limit of the user set 
up based on the user account registered beforehand, for example or a cybermoney 
account. The published electronic ticket is transmitted to the user machine 620. 
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[0232] The example of a configuration of an electronic ticket is shown in drawing 47 . 
Drawing 47 (A) is a data configuration when the tariff allocation place (tariff receipt 
entity) based on an electronic ticket is single. The ticket use place ID which shows the 
tariff allocation place (entity) based on the ticket issue object ID, ticket issue processing 
No., and an electronic ticket The amount of money which shows the tariff distributed 
based on an electronic ticket, the expiration date of an electronic ticket, That is, a tariff 
receipt entity contains the term which can perform liquidation (tariff settlement of 
accounts) processing based on a ticket, and the purchase requested data (refer to 
drawing 46 (m)) further transmitted from the user machine to the ticket issue server. In 
addition, data, such as the ticket date of issue, may be added further. The electronic 
signature of the ticket issue server 610 is added to these data. Furthermore, the public 
key certificate of a ticket issue server is attached to an electronic ticket if needed for 
signature verification. 

[0233] Drawing 47 (B) is a data configuration in case the tariff allocation place (entity) 
based on an electronic ticket is plurality, two or more (1-n) storing of the ticket use place 
ID is carried out, and the amount of money which shows the tariff distributed based on 
an electronic ticket is stored to 1-n for every ticket use place ID. The entity which 
receives a tariff based on a ticket receives the amount of money corresponding to self 
ID. 

[0234] In the example of processing of drawing 37 , the ticket issue server 610 
publishes the electronic ticket for the content providers (CP) who manage a distribution 
server, and the electronic ticket for user machine authentication servers (DAS). These 
ticket issue places differ for every contents, and the author of contents etc. may be 
contained. A ticket issue server has the table which determined the allocation amount of 
money as the ticket issue place based on content ID, acquires allocation amount-of- 
money data from a table with a ticket issue place based on the content ID contained in a 
contents purchase demand from a user machine, and generates and publishes a ticket. 
[0235] (8) The user machine 620 which received the ticket from the received-data 
verification ticket issue server 610 performs verification processing of a ticket. This 
verification processing is the same processing as the processing flow of drawing 15 
explained previously, and the user machine 620 performs verification of the public key 
certificate of a ticket issue server using the public key KpCA of an issue office (CA) first, 
and performs signature verification of a ticket using the public key KpTIS of a ticket 
issue server picked out from the public key certificate next. 

[0236] (9) mutual recognition (10) electronic-ticket (for CP) transmission - next, the user 
machine 620 accesses the distribution server 640, and performs mutual recognition 
processing. If mutual recognition is materialized, the user machine 620 will transmit the 
electronic ticket for distribution servers (for CP) to the distribution server 640. 
[0237] (1 1) In received-data verification (12) encryption contents and the encryption 
contents key transmitting distribution server 640, verification of an electronic ticket (for 
CP) is completed, and if it judges with it being a just electronic ticket without a data 
alteration, the distribution server 640 will transmit encryption contents and an encryption 
contents key to a user machine. Encryption contents:Kc (content) as which these 
enciphered contents by the contents key, and a contents key: It is data containing 
encryption contents key data:KpDAS (Kc) which enciphered Kc with the public key of 
the user machine authentication server (DAS) 630. 
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[0238] (13) A received-data verification (14) mutual recognition (15) electronic ticket (for 
DAS) and a key, **, or the user machine 620 that obtained and received encryption 
contents and an encryption contents key from the demand transmitting distribution 
server 640 performs verification processing of data. After data verification, the user 
machine 620 accesses the user machine authentication server 630, and performs 
mutual recognition processing. If mutual recognition is materialized, to the user machine 
authentication server 630, the user machine 620 will be obtained in the electronic ticket 
(DAS) and key for user machine authentication servers, or **, and will transmit a 
demand. It obtains in a key or ** and a demand is the contents key Kc enciphered with 
the public key of the user machine authentication server which received from the 
distribution server 640 previously. The contents key which enciphered the encryption 
contents key KpDAS (Kc) with the public key KpDEV of a user machine, i.e., the 
processing set to KpDEV (Kc), is required, and it was reexplaining using drawing 1 , and 
is the same as that of processing. 

[0239] (16) Obtain a received-data verification (17) encryption contents key, **, or the 
user machine authentication server 630 that obtained, reencryption contents key [ an 
electronic ticket (for DAS), and ] KpDAS (Kc) applied from processing and the user 
machine 620, and received the demand in an electronic ticket (for DAS), an encryption 
contents key, or **, and it performs verification processing of a demand. When it judges 
with verification being completed, and it being a just electronic ticket without the 
alteration of data, obtaining in a just key or **, and being a demand, the user machine 
authentication server 630 Contents key : Decode data:KpDAS(Kc) which enciphered Kc 
with the public key KpDAS of the user machine authentication server (DAS) 630 with 
the private key KsDAS of the user machine authentication server 630, and the contents 
key Kc is acquired, further - the contents key Kc - public key [ of a user machine ]: - 
encryption contents key: enciphered by KpDEV - KpDEV (Kc) is generated. That is, it 
obtains in the key or ** of KpDAS(Kc) ->Kc->KpDEV (Kc), and processing is performed. 
This processing is the same as the processing explained using above-mentioned 
drawing 16 . 

[0240] (18) the encryption contents key transmitting (19) received-data verification (20) 
preservation processing user machine authentication server 630 - a key or ** - 
obtaining - transmit the generated encryption contents key KpDEV (Kc) to the user 
machine 620. From the user machine authentication server 630, the user machine 620 
which received the encryption contents key KpDEV (Kc) Received-data verification 
processing is performed. After verification the user machine 620 The encryption 
contents key KpDEV (Kc) is decoded using the self private key KsDEV, further, it 
enciphers using the preservation key Ksto of a user machine, encryption contents 
key:Ksto (Kc) is generated, and this is stored in the storage means of the user machine 
620. Encryption contents key:Ksto (Kc) is decoded using the preservation key Ksto, 
using the contents key Kc which took out and took out the contents key Kc, in the 
utilization time of contents, decode processing of the encryption contents Kc (Content) 
is performed, and contents (Content) are reproduced and performed to it. 
[0241] (21) The mutual recognition (22) electronic-ticket (for CP) transmitting distribution 
server 640 accesses the ticket liquidation server 650 after the encryption contents 
distribution to the user machine 620, and performs mutual recognition processing. If 
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mutual recognition is materialized, the distribution server 640 will transmit the electronic 
ticket for distribution servers (for CP) to the ticket liquidation server 650. 
[0242] (23) In received-data verification and the liquidation processing ticket liquidation 
server 650, verification of an electronic ticket (for CP) is completed, and if it judges with 
it being a just electronic ticket without a data alteration, the ticket liquidation server 650 
will perform liquidation processing based on the received electronic ticket (for CP). 
Liquidation processing is performed as processing which changes the amount of money 
set as the electronic ticket (for CP) from the account of Manage User of a user machine 
to a management account or a cybermoney account of the content provider (CP) who 
manages the distribution server registered beforehand, for example etc. Or a ticket 
issue server may already carry out as processing which changes the amount of money 
set as the ticket by a content provider's (CP)'s management account from the ticket 
issue server management account received as a prepayment deposit from a user. In 
addition, the ticket liquidation server 650 verifies the expiration date stored in the ticket, 
and performs tariff settlement-of-accounts processing based on this ticket a condition [ it 
having been checked that it is within an expiration date ]. 

[0243] (24) In the liquidation processing report report ticket liquidation server 650, after 
the liquidation based on an electronic ticket (for CP) is completed, the ticket liquidation 
server 650 transmits the report in which it is shown that liquidation processing ended to 
the distribution server 640. 

[0244] The example of a configuration of a liquidation processing report is shown in 
drawing 46 (n). The ticket liquidation processing ID in which a liquidation processing 
report is the identifier of ticket liquidation processing each The liquidation request origin 
ID as a demand subject identifier which has required the liquidation based on a ticket 
The ticket issue object ID which is the identifier of a ticket issue object which published 
the ticket with the liquidation amount of money and contents dealings based on a ticket 
It has data, such as a ticket liquidation processing completing date when liquidation 
processing was performed in ticket issue processing No. which the ticket issue server 
610 sets up, and the ticket liquidation server 650, and the electronic signature of the 
ticket liquidation server 650 is added to these. Furthermore, the public key certificate of 
a ticket liquidation server is attached to a liquidation processing report if needed for 
signature verification. 

[0245] (25) The distribution server 640 which received the liquidation processing report 
from the received-data verification ticket liquidation server 650 performs verification 
processing of a liquidation processing report. If it is admited by data verification that a 
report is just, it will be checked that the tariff allocation accompanying the contents 
dealings to the content provider who is the administration of a distribution server has 
been completed. 

[0246] (26) mutual recognition (27) electronic-ticket (for DAS) transmitting (28) received- 
data verification, and liquidation -- the same processing as processing [ between the 
above-mentioned distribution server 640 and the ticket liquidation server 650 ] (21) - 
(25) is performed based on an electronic ticket (for DAS) between the processing (29) 
liquidation processing report report (30) received-data verification user machine 
authentication server 630 and the ticket liquidation server 650. 
[0247] (31) Mutual recognition (32) liquidation processing report report (33) received- 
data verification and the ticket liquidation server 650 transmit the same liquidation 
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processing report (refer to drawing 46 (n)) to the ticket issue server 610 with having sent 
to each entity after mutual recognition with the ticket issue server 610, when liquidation 
processing is performed based on the ticket received from each entity. The ticket issue 
server 610 performs verification of a liquidation processing report which received from 
the ticket liquidation server 650, and checks that the liquidation processing about the 
published ticket has been completed. 

[0248] (Status transition in each device) Each entity of the ticket issue server 610 grade 
shown in drawing 37 opts for the next processing in a series of processings which relate 
to contents dealings, respectively according to the status which shows a processing 
state. The status is managed for every contents dealings in a ticket issue management 
database, a purchase management database of the user machine of drawing 40 , etc. 
which are shown in drawing 39 . 

[0249] First, status transition of the ticket issue server 610 is explained using drawing 
48 . Processing is started because the ticket issue server 610 receives the contents 
purchase requested data from the user machine 620 (it corresponds to processing (3) of 
drawing 37 ). The ticket issue server 610 sets the status as "the completion of purchase 
reception", when the received data from the user machine 620 are verified and it 
succeeds in verification, and when the judgment by it being a just purchase demand is 
not made by data verification, processing is stopped, or the same processing and here 
the after treatment repeated purchase reception processing the number of 
predetermined times is stopped, and it carries out the status as "purchase reception 
failure." Only when the status is "the completion of purchase reception", it progresses to 
degree step. 

[0250] If the status changes to "the completion of purchase reception" next, the ticket 
issue server 610 will consider the status as "the completion of ticket distribution" by 
transmitting an electronic ticket to the user machine 620 (it corresponding to processing 
(7) of drawing 37 ), and receiving the reception response (response) from a user 
machine. When a reception response (response) is not received, processing is stopped, 
or after repeating transmitting processing of an electronic ticket the number of 
predetermined times, processing is stopped by the same processing and here, and the 
status is considered as "ticket distribution failure." Only when the status is "the 
completion of ticket distribution", it progresses to degree step. 

[0251] When the status changes to "the completion of ticket distribution" next, the ticket 
issue server 610 receives a liquidation processing report from a ticket liquidation server, 
and performs verification (it corresponds to processing (32) of drawing 37 , and (33)) of 
a report. When it succeeds in verification, the status is set as "the completion of 
liquidation processing report reception", and it considers as processing termination. 
When judgment that it is a just report is not made by report verification, after stopping 
processing or repeating report reception and verification processing the number of 
predetermined times the same processing and here, processing is stopped and the 
status is carried out as "liquidation report reception failure." The ticket issue server 610 
performs such a state transition for every contents dealings. 

[0252] Next, status transition of the user machine authentication server 630 is explained 
using drawing 49 . Processing is started because the user machine authentication 
server 630 receives the encryption contents key KpDAS from the user machine 620 
(Kc) (it corresponds to processing (1 5) of drawing 37 ). When the user machine 
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authentication server 630 verifies the received data containing the electronic ticket 
(DAS) from the user machine 620 and it succeeds in verification When the status is set 
as "the completion of key reception" and judgment that it is just data is not made by 
data verification Processing is stopped, or after repeating the reception of encryption 
contents key data (user machine) the number of predetermined times, processing is 
stopped by the same processing and here, and the status is considered as "key 
reception failure." Only when the status is "the completion of key reception", it 
progresses to degree step. 

[0253] If the status changes to "the completion of key reception" next, the user machine 
authentication server 630 will presuppose the status "is completed [ it obtains in a key or 
** and ]", when obtain, it performs processing (it corresponds to processing (17) of 
drawing 37 ), it obtains in a key or ** and processing is successful, a contents key, **, or. 
Since it does not assume a key, **, or that obtaining goes wrong, status transition of 
"obtaining in a key or ** and completing" exists here. 

[0254] When the status changes "to obtain in a key or ** and complete" next, the user 
machine authentication server 630 transmits encryption contents key data (DAS) to the 
user machine 620 (it corresponds to processing, (18) of drawing 37 ), and receives the 
data reception response from the user machine 620. When a data reception response is 
received, the status is set as "the completion of key transmitting", when reception of a 
data reception response is not made, after stopping processing or repeating transmitting 
processing of encryption contents key data (DAS) the number of predetermined times 
the same processing and here, processing is stopped and the status is carried out as 
"key transmitting failure." 

[0255] If the status changes to "the completion of key transmitting" next, to the ticket 
liquidation server 650, the user machine authentication server 630 will transmit an 
electronic ticket (for DAS) (it corresponds to processing (27) of drawing 37 ), and will 
receive the data reception response from the ticket liquidation server 650. When a data 
reception response is received, the status is set up to "the completion of ticket 
liquidation demand transmitting", when reception of a data reception response is not 
made, processing is stopped, or the same processing and here, after repeating 
transmitting processing of a ticket liquidation demand the number of predetermined 
times, processing is stopped, and the status is carried out as "ticket liquidation demand 
failure." 

[0256] If the status changes to "the completion of ticket liquidation demand transmitting" 
next, the user machine authentication server 630 will receive the liquidation processing 
report from the ticket liquidation server 650, and will perform verification processing (it 
corresponds to processing (29) of drawing 37 , and (30)) of a report. When it succeeds 
in verification, the status is set as "the completion of liquidation processing report 
reception", and it considers as processing termination. When judgment that it is a just 
report is not made by report verification, after stopping processing or repeating report 
reception and verification processing the number of predetermined times the same 
processing and here, processing is stopped and the status is carried out as "liquidation 
report reception failure." The user machine authentication server 630 performs such a 
state transition for every contents dealings. 

[0257] Next, status transition of the distribution server 640 is explained using drawing 
50 . Processing is started because the distribution server 640 receives the electronic 
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ticket (for CP) from the user machine 620 (it corresponds to processing (10) of drawing 
37 ). The distribution server 640 sets the status as "the completion of electronic ticket 
reception", when the received data from the user machine 620 are verified and it 
succeeds in verification, when judgment that it is just data is not made by data 
verification, it stops processing, or after it repeats the reception of a ticket the number of 
predetermined times, stops processing by the same processing and here, and 
considers the status as "electronic ticket reception failure." Only when the status is "the 
completion of electronic ticket reception", it progresses to degree step. 
[0258] If the status changes to "the completion of electronic ticket reception" next, the 
distribution server 640 will transmit encryption contents and the encryption contents key 
data KpDAS (Kc) to the user machine 620 (it corresponds to processing (12) of drawing 
37 ), and will receive the data reception response from the user machine 620. When a 
data reception response is received, the status is set as "the completion of distribution", 
when reception of a data reception response is not made, processing is stopped, or the 
same processing and here, after repeating transmitting processing of encryption 
contents and the encryption contents key data KpDAS (Kc) the number of 
predetermined times, processing is stopped, and the status is carried out as "distribution 
failure." 

[0259] If the status changes to "the completion of distribution" next, to the ticket 
liquidation server 650, the distribution server 640 will transmit an electronic ticket (for 
CP) (it corresponds to processing (22) of drawing 37 ), and will receive the data 
reception response from the ticket liquidation server 650. When a data reception 
response is received, the status is set up to "the completion of ticket liquidation demand 
transmitting", when reception of a data reception response is not made, processing is 
stopped, or the same processing and here, after repeating transmitting processing of a 
ticket liquidation demand the number of predetermined times, processing is stopped, 
and the status is carried out as "ticket liquidation demand failure." 
[0260] If the status changes to "the completion of ticket liquidation demand transmitting" 
next, the distribution server 640 will receive the liquidation processing report from the 
ticket liquidation server 650, and will perform verification processing (it corresponds to 
processing (24) of drawing 37 , and (25)) of a report. When it succeeds in verification, 
the status is set as "the completion of liquidation processing report reception", and it 
considers as processing termination. When judgment that it is a just report is not made 
by report verification, after stopping processing or repeating report reception and 
verification processing the number of predetermined times the same processing and 
here, processing is stopped and the status is carried out as "liquidation report reception 
failure." The distribution server 640 performs such a state transition for every contents 
dealings. 

[0261] Next, status transition of the user machine 620 is explained using drawing 51 . 
Processing is started because the user machine 620 transmits purchase requested data 
to the ticket issue server 610 first (it corresponds to processing (3) of drawing 37 ). 
Processing stops, or after repeating purchase demand transmitting processing the 
number of predetermined times, the same processing and here processing stops, and a 
user machine 620 carries out the status as "purchase demand transmitting failure", 
when the status is set up to "the completion of purchase demand transmitting" and the 
response of the completion of reception from the ticket issue server 610 cannot receive, 
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if the response [ requested data / to the ticket issue server 610 / purchase ] of the 
completion of reception is received. Only when the status is "the completion of purchase 
demand transmitting", it progresses to degree step. 

[0262] If the status changes to "the completion of purchase demand transmitting" next, 
from the ticket issue server 610, the user machine 620 will receive an electronic ticket (it 
corresponds to processing (7) of drawing 37 , and (8)), and will verify received data. 
When it succeeds in verification of the ticket from the ticket issue server 610, the status 
is set as "the completion of electronic ticket reception", when judgment that it is a just 
ticket is not made by data verification, processing is stopped, or after repeating ticket 
reception the number of predetermined times, processing is stopped by the same 
processing and here, and the status is considered as "electronic ticket reception failure." 
Only when the status is "the completion of electronic ticket reception", it progresses to 
degree step. 

[0263] When the status changes to "the completion of electronic ticket reception" next, 
to the distribution server 640, the user machine 620 transmits an electronic ticket (it 
corresponds to processing (10) of drawing 37 ), and receives a data receiving response. 
When a data receiving response is received, the status is set as "the completion of 
electronic ticket transmitting", when not receiving a data receiving response, processing 
is stopped, or after repeating ticket transmitting processing the number of 
predetermined times, processing is stopped by the same processing and here, and the 
status is considered as "electronic ticket transmitting failure." Only when the status is 
"the completion of electronic ticket transmitting", it progresses to degree step. 
[0264] If the status changes to "the completion of electronic ticket transmitting" next, 
from the distribution server 640, with encryption contents, the user machine 620 will 
receive the encryption contents key KpDAS (Kc), and will perform data verification (it 
corresponds to processing (12) of drawing 37 , and (13)). When it succeeds in data 
verification, the status is set as "the completion of key 1 reception", when it does not 
succeed in data verification, processing is stopped, or after repeating the reception of 
key data the number of predetermined times, processing is stopped by the same 
processing and here, and the status is considered as "key 1 reception failure." 
[0265] If the status changes to "the completion of key 1 reception" next, the user 
machine 620 will transmit an electronic ticket (for DAS), and the encryption contents key 
KpDAS (Kc) to the user machine authentication server 630 (it corresponds to 
processing (15) of drawing 37 ), and will receive a data receiving response. When 
obtaining the status in "key or **, setting it as completion of demand transmitting", when 
a data receiving response is received, and not receiving a data receiving response, after 
stopping processing or repeating transmitting processing of an electronic ticket (for 
DAS) and the encryption contents key KpDAS (Kc) the number of predetermined times 
the same processing and here, processing is stopped, the status is obtained in "key or 
**, and it carries out as demand transmitting failure." The status obtains in "key or **, 
and only when it is completion of demand transmitting", it progresses to degree step. 
[0266] If the status obtains in "key or ** and changes to completion of demand 
transmitting" next, from the user machine authentication server 630, the user machine 
620 will receive the encryption contents key KpDEV (Kc), and will perform data 
verification (it corresponds to processing (18) of drawing 37 , and (19)). When it 
succeeds in data verification, the status is set as "the completion of key 2 reception", 
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and processing is ended. When it does not succeed in data verification, processing is 
stopped, or after repeating the reception of key data the number of predetermined times, 
processing is stopped by the same processing and here, and the status is considered 
as "key 2 reception failure." 

[0267] Next, status transition of the ticket liquidation server 650 is explained using 
drawing 52 . Processing is started because the ticket liquidation server 650 receives the 
electronic ticket with the right of allocation by the electronic ticket from an entity (it 
corresponds to processing (22) of drawing 37 , and (27)). The ticket liquidation server 
650 sets the status as "the completion of electronic ticket reception", when a receiving 
ticket is verified and it succeeds in verification, when judgment that it is just data is not 
made by data verification, it stops processing, or after it repeats the reception of a ticket 
the number of predetermined times, stops processing by the same processing and here, 
and carries out the status as "electronic ticket reception failure." Only when the status is 
"the completion of electronic ticket reception", it progresses to degree step. 
[0268] If the status changes to "the completion of electronic ticket reception" next, the 
ticket liquidation server 650 will perform liquidation processing based on an electronic 
ticket. The profits allocation entity into which liquidation processing is registered 
beforehand, for example, the management account of the content provider (CP) who 
manages a distribution server, Or the processing which changes the amount of money 
set as the electronic ticket (for CP) to a cybermoney account etc. from the account of 
Manage User of a user machine, Or a ticket issue server is already performed to a 
content provider's (CP)'s management account as processing which changes the 
amount of money set as the ticket from the ticket issue server management account 
received as a prepayment deposit from a user. When liquidation processing was 
completed, the status is set as "the completion of liquidation processing" and liquidation 
processing is not able to be performed, processing is stopped and the status is 
considered as "liquidation processing failure." 

[0269] If the status changes to "the completion of liquidation processing" next, to the 
entity which has transmitted the ticket, the ticket liquidation server 650 will transmit a 
liquidation processing report (it corresponds to processing (24) of drawing 37 , and (29)), 
and will receive the data reception response from each entity. When a data reception 
response is received, the status is set as "the completion of liquidation report 
transmitting", and processing is ended. When reception of a data reception response is 
not made, processing is stopped, or after repeating transmitting processing of a 
liquidation report the number of predetermined times, processing is stopped by the 
same processing and here, and the status is carried out as "liquidation report 
transmitting failure." The ticket liquidation server 650 performs such a state transition for 
every contents dealings. 

[0270] By circulating the ticket published by drawing 53 with a ticket issue object shows 
the example of a concrete configuration which performs settlement-of-accounts 
processing of a contents tariff. If there is a contents purchase demand from the user 
machine 802 to the ticket issue object 801 , a ticket issue object will perform accounting 
about dealings of contents, and electronic ticket issue processing. These processings 
are performed as processing which publishes the electronic ticket within the dealings 
amount-of-money limit of the user set up based on the user account registered 
beforehand, for example or a cybermoney account. In the example shown in drawing 
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53 , a ticket issue object publishes the electronic ticket of 1 ,000 cyclotomies to a user 
machine as a contents purchase price. 

[0271] As shown in the drawing upper part, in the example of drawing 53 , the license 
holder (user machine authentication server) 803 which is the system management 
person of contents distribution presupposes [ the shop as a ticket issue object / 100 yen 
and a contents manufacturer (distribution server) ] that it is the allocation of 300 yen of 
the contents tariff of 1000 yen a setup to which 600 yen is received, respectively as a 
charge of contents as a charge of a license as shop profits as a sales commission. 
[0272] The ticket issue object 801 which received the purchase demand from a user 
machine publishes each electronic ticket, when the setting information on the allocation 
ratio of a contents tariff is searched for from content ID and there are two or more tariff 
allocation places. In the example of drawing 53 , the electronic ticket which set up the 
charge of SEISENSU and the allocation tariff of 100 yen to the license holder 803, and 
the charge of contents and 600 yen ticket to a contents manufacturer are distributed to 
the user machine 802. The signature of a ticket issue object is generated by the 
electronic ticket to distribute. 

[0273] the user machine 802 - the license holder 803 and the contents manufacturer 
804 each electronic ticket is transmitted to each. After the license holder 803 and the 
contents manufacturer 804 verify the received electronic ticket and check that it is a just 
ticket, they transmit a ticket to a bank (ticket liquidation server) 805, perform signature 
verification also in a liquidation server, check that it is a just ticket, and convert each 
allocation tariff into money (ex. change processing). In addition, signature verification of 
the ticket performed in a bank (ticket liquidation server) is verification of a signature of 
the ticket issue object generated to the electronic ticket. Moreover, verification of a user 
machine signature of the purchase requested data contained in a ticket is also 
performed. 

[0274] Furthermore, it is good also as a configuration whose bank (ticket liquidation 
server) generate a signature to the contents manufacturer who is the transmitting 
subject of a ticket, and the transmit data with which a license holder contains an 
electronic ticket, and performs signature verification also about these signatures. 
[0275] With the configuration of drawing 53 , ticket issue object (shop) 801 self is also 
the configuration of a contents tariff of converting into money by sending the self 
electronic ticket of 300 cyclotomies to a bank (ticket liquidation server) 805 in part. 
[0276] By liquidation processing of each of these electronic tickets, allocation of a 
contents tariff is performed certainly. The contents manufacturer 804 transmits 
encryption contents key:KpDAS (Kc) which enciphered the contents key Kc as the 
encryption contents enciphered with the contents key Kc with the public key KpDAS of a 
license holder (user machine authentication server) to the user machine 802, after 
receiving and verifying an electronic ticket from the user machine 802. 
[0277] The user machine 802 transmits the encryption contents key KpDAS (Kc) 
received from the contents maker 804 to the license holder 803 with an electronic ticket 
(DAS). After verification of an electronic ticket, a license holder is obtained in the key or 
** of the encryption contents key KpDAS (Kc), performs processing, enciphers a 
contents key with the public key KpDEV of a user machine, generates KpDEV (Kc), and 
transmits it to the user machine 802. The user machine 802 can decode KpDEV (Kc) 
with the self private key KsDEV, and can obtain the contents key Kc. Moreover, when it 
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stores a contents key in a device, it enciphers and saves with the preservation key Ksto 
of self. 

[0278] As mentioned above, the ticket published with a ticket issue object is received. A 
distribution server (ex. contents manufacturer) transmits encryption contents and an 
encryption contents key to a user machine a condition [ it being a just ticket ]. On the 
other hand, a license holder (user authentication device) by having received the 
electronic ticket similarly and having considered as the configuration which an 
encryption contents key chips a condition [ it being a just ticket ], performs ****, and is 
distributed to a user machine Allocation of a positive contents tariff based on an 
electronic ticket is performed, and use of contents is attained in a user machine. 
[0279] [3. When the fact that contents distribution management], next the user machine 
by the log collection server purchased contents is accumulated in a user machine as a 
log and a system management person collects logs explains the contents distribution 
system which enabled the grasp of the circulation stereo of contents correctly. 
[0280] The system configuration of the contents distribution gestalt which has a log 
recovery system in drawing 54 is shown, the user machine (DEVICE) 902 which 
receives the contents distribution from the shop server (SHOP) 901 and the shop server 
901 which performs distribution service of contents [ as opposed to a user machine in 
the contents distribution system of drawing 54 ] further The log collection server 903 
which functions as a log management server for just contents dealings management is 
used as the main component. With the content provider 905 as a provider of contents 
Various information, such as use limit information on contents, is generated as a header 
to the contents offered by the content provider 905. It has further the authoring server 
904 with which a shop server is provided, and the certificate authority (CA:Certificate 
Authority) which publishes a public key certificate (Cert_xxx) to each entity. 
[0281] In the configuration of drawing 54 , a content provider 905 and the authoring 
server 904 are examples of an entity configuration which offer the contents used as the 
candidate for circulation to the shop server 901 , and offer of the circulation contents to a 
shop server is made not only in the gestalt of drawing 54 but in other various modes. 
For example, from a content provider, a direct shop server may be provided with 
contents and a shop server may be provided with contents through two or more service 
providers from the author who is a holder of contents. 

[0282] The example of a configuration of drawing 54 shows a content provider 905 as 
one example of representation with the right which acquires some contents sales of an 
entity, in order to make an understanding of explanation of this invention easy. In the 
example of a configuration of drawing 54 , a content provider 905 can acquire the 
allocation profits of self certainly according to the check of the contents sales data 
managed based on the log collected by the log collection server 903. When there is an 
entity which has other rights of profits allocation, the entity can join the configuration of 
drawing 54 and can check the allocation profits of self based on the log collected by the 
log collection server 903. 

[0283] In the configuration of drawing 54 , with having explained in the configuration 
besides drawing 1 , the shop server 901 is the same configuration, has the control 
section in which cipher processing and communications processing are possible, 
performs status management accompanying contents dealings processing, and 
performs the dealings processing sequence in each device. Moreover, a content 
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provider 905 and the authoring server 904 also have the control section in which cipher 
processing and communications processing are possible, perform status management 
accompanying contents dealings processing, and perform the dealings processing 
sequence in each device. 

[0284] (User machine) The user machine 902 is the same as that of the configuration 
previously explained using drawing 7 , and has the control means 230 (refer to drawing 
7 ) in which cipher processing and communications processing are possible. However, 
in this example, a control means 230 stores the log data which generated the log data 
for every contents purchase processing, and was generated in the purchase 
management database 220. 

[0285] It is generated in the user machine 902 and the example of a configuration of the 
log data stored is shown in drawing 55 . Two examples of log data are shown in drawing 
55 . (A) The day entry which shows the shop ID (ID_SHOP) which is the identifier of a 
shop which conducted the user machine ID (ID_DEV) which is the identifier of content 
ID and a user machine which is an identifier of the contents from which the user 
machine 902 acquired the example 1 of a configuration by dealings with the shop server 
901 , and dealings, and the time of dealings is included, and the signature (Sig.DEV) of 
the user machine to these data is generated. A log collection server performs 
verification processing of the electronic signature of the purchase log which receives 
from a user machine. (B) The example 2 of a configuration is the configuration that the 
signature (Sig.DEV) of a user machine was generated to selling check data and the 
receipt time data of contents. Selling check data are data in which having performed 
sale of the contents which the shop server 901 generates based on the contents 
purchase demand from the user machine 902 is shown. The latter part explains selling 
check data further. 

[0286] The user machine 902 generates the log data shown in drawing 55 on the 
occasion of contents purchase processing, and stores it in a user machine. The stored 
log data is transmitted to the log collection server 903. A user machine transmits the log 
data accumulated between them at the time of update process activation of the public 
key certificate of self to the log collection server 903. The latter part explains these 
processing sequences to a detail using a flow. 

[0287] (Log collection server) The log collection server 903 has the configuration shown 
in drawing 56 . A log collection server has the collection log management database 
9031 . The collection log management database 9031 is a database which stores the log 
data (refer to drawing 55 ) received from various user machines. 
[0288] The log collection server 903 has the control means 9032 which performs 
communications processing with the user machine 902 and shop server 901 grade, 
data cipher processing further for each communications processing, etc. A control 
means 9032 has a function as a cipher-processing means and a communications 
processing means as well as control means, such as a shop server explained 
previously. The configuration is the same as the configuration explained using drawing 
4 . The key data used in cipher processing performed in the cipher-processing means of 
a control means 9032 are stored in the storage means inside a control means secure 
one. As code problem data, such as a cryptographic key which the log collection server 
903 stores, there is a public key KpCA of the certificate authority (CA:Certificate 
Authority) as a public key certificate issue station which is the issue engine of private 
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key:KsLOG of the log collection server 903, public key certificate Cert_LOG of the log 
collection server 903, and a public key certificate. 

[0289] The log collection server 903 performs issue procedure processing of a public 
key certificate in exchange for the log data receipt from the user machine 902. The 
public key which received the public key for updating and was received from the user 
machine 902 is specifically transmitted to a certificate authority 906, the issue demand 
of the public key certificate of a user machine is performed, the public key certificate 
which the certificate authority 906 published is received, and it transmits to the user 
machine 902. The latter part explains this the processing of a series of to a detail using 
a flow. 

[0290] (Contents purchase processing) The processing in this example is classified into 
A. contents purchase processing B. log transmission and four processings of public key 
certificate update process C. contents selling preliminary-treatment D. sales check 
processing as shown in the upper case of drawing 54 . Hereafter, these the processings 
of each are explained using a flow. 

[0291] (A. Contents purchase processing) Contents purchase processing is explained 
using the flow of drawing 57 and drawing 58 . In drawing 57 and drawing 58 , a user 
machine is shown in left-hand side, and processing of a shop server is shown in right- 
hand side. First, as shown in drawing 57 , mutual recognition is performed between a 
user machine and a shop server at the time of processing initiation (S1501, S1601). 
[0292] Mutual recognition processing is performed as processing based on the public 
key system explained using drawing 13 . In this mutual recognition, it is carried out 
using the public key certificate with which the expiration date which a certificate 
authority (CA) 906 publishes was set up, and a user machine is called for as conditions 
for having a public key certificate within an expiration date to form mutual recognition. 
Although the latter part explains, an update process of a public key certificate is 
performed considering transmission of the log to the log collection server 903 as 
conditions. 

[0293] Data communication is performed or the session key (Kses) generated in mutual 
recognition processing is used for generation processing of an alteration check value 
(ICVMntegrity Check Value) in which enciphered the transmit data if needed and Kses 
was used. About generation of ICV, it mentions later. 

[0294] If mutual recognition is materialized, a user machine will generate the transaction 
ID applied in contents dealings based on a random number, and will generate purchase 
requested data (S1502). The example of a format of purchase requested data is shown 
in drawing 59 (A). 

[0295] It is the configuration which generated the signature (Sig.Dev) of the list price 
which are the user machine ID (ID_DEV) which is the identifier of content ID and a user 
machine which is above-mentioned Transaction ID (TID_DEV) and an above-mentioned 
contents identifier, and a contents price, and a user [ as opposed to / including purchase 
request time further / these data ] machine to purchase requested data. 
[0296] Furthermore, a user machine generates the alteration check value (ICV1) of 
purchase requested data, and transmits it to a shop server (S1503). An alteration check 
value (ICV) is calculated using the Hash Function to the data for an alteration check, 
and is calculated by ICV=hash (Kiev, C1 and C2, «). Kiev is an ICV generation key. C1 
and C2 are the information on the data for an alteration check, and the message 
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authenticator (MAC: Message authentication Code) of the critical information of the data 
for an alteration check is used. 

[0297] The example of MAC value generation using a DES cipher-processing 
configuration is shown in drawing 60 . the (target message as shown in the 
configuration of drawing 60 -- a 8-byte unit - dividing - the divided message is 
hereafter set to) M1 , M2, MN - the exclusive OR of M1 is first carried out to initial 
value (Initial Value (hereafter referred to as IV)) (the result is set to 11). Next, 11 is put 
into the DES encryption section, and it enciphers using a key (hereafter referred to as 
K1) (an output is set to E1). Continuously, the exclusive OR of E1 and M2 is carried out, 
the output 12 is put in to the DES encryption section, and it enciphers using a key K1 
(output E2). Hereafter, this is repeated and encryption processing is performed to all 
messages. EN which came out at the end serves as a message authenticator (MAC 
(Message Authentication Code)). In addition, the partial data which constitute the data 
used as the candidate for verification as a message are usable. 
[0298] Such an alteration check value (ICV) of the data for a check is constituted as a 
MAC value generated using the ICV generation key Kiev. If it will be guaranteed that 
there is no alteration in data if that there is no alteration compares guaranteed ICV 
which the data source generated to the data generate time, for example with ICV which 
the data receiving side generated based on received data and the same ICV is obtained, 
and ICV(s) differ, it will be judged with there having been an alteration. 
[0299] Here, session key:Kses generated as an ICV generation key at the time of 
mutual recognition is used. A user machine generates the alteration check value (ICV1) 
of purchase requested data (refer to drawing 59 (A)) with the application of session 
key:Kses, and transmits purchase requested data +ICV1 to a shop server. 
[0300] a shop -- a server -- ICV -- one verification - namely, - received data - being 
based - a session - a key - : -- Kses applying - an alteration - a check - a value -- 
ICV - one - ' - generating - having received - ICV one -- = ~ ICV - one - ' - being 
materialized -- a ****** - judging . When materialized, it judges with having no alteration. 
Furthermore, a shop server performs signature verification (S1603) of purchase 
requested data. Signature verification is performed using the public key of a user 
machine. A public key is taken out from public key certificate CertJDEV of a user 
machine, and it becomes conditions that it is a public key certificate within an expiration 
date. The public key certificate with which the expiration date went out is not used for 
signature verification in a shop server, but serves as the purchase request NG. the 
check of ICV, and signature verification -- if all are O.K., a shop server will generate 
selling check data (S1604). 

[0301] Selling check data have the data configuration shown in (B) of drawing 59 . It is 
the entity which a management person is the management entity (SH: system holder) of 
for example, a contents selling system, and manages the log collection server 903 by 
drawing 54 the shop ID (ID_SHOP) which is the identifier of the transaction ID 
(TID_SHOP) which the shop server generated, and a shop, selling time, the 
management person commission information over contents sale, and here. 
[0302] Furthermore, CP (content provider) sales distribution information and this are 
information which shows allocation of the content provider to the sales of contents. 
Furthermore, it is the configuration that the signature (Sig.SHOP) of a shop was 
generated by these data including purchase requested data (refer to drawing 59 (A)). 
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[0303] Although the selling check data format of drawing 59 (B) is recording only the 
allocation information on two entities with a content provider (CP) with the management 
person (SH: system holder) to the sales of contents, in addition when the allocation 
place entity of contents sales exists, the allocation information on each of those entities 
is also stored. 

[0304] the check of ICV, and signature verification if all are O.K. and selling check 
data are generated (S1604), a shop server will use the session key Kses for the 
purchase O.K. data containing the message which consents to purchase, will carry out 
generation addition of the alteration check value (ICV2), and will transmit to a user 
machine (S1605). The session key Kses is used for the purchase NG data containing 
the message in which a shop server refuses purchase as the check of ICV and one of 
signature verification is NG, generation addition of the alteration check value (ICV2) is 
carried out, and it transmits to a user machine (S1606). 

[0305] Furthermore, a shop server transmits selling check data (refer to drawing 59 (B)), 
the data which generated the alteration check value (ICV3) using the session key Kses 
to the header (various contents related information including the use information on 
contents etc.), and contents to a user machine, when purchase O.K. data are 
transmitted to a user machine (S1607). 

[0306] A user machine receives contents and purchase demand response data (O.K. or 
NG) +ICV2 (S1504), verifies ICV2, and checks a purchase demand response (S1505). 
When it is (O.K.) in which it was judged with having no data alteration by ICV2, and 
purchase was accepted Selling check data (refer to drawing 59 (B)) and header (various 
contents related information including use information on contents etc.) +ICV3 are 
received (S1506). Verification of ICV3 and signature verification of selling check data 
are performed, and when all are O.K., ICV4 is generated to the response of the 
contents reception O.K., and it transmits to a shop server. 

[0307] When the judgment of step S1507 is No, in step S1509, ICV4 is generated to the 
response of the contents reception NG, and it transmits to a shop server. 
[0308] A shop server receives the contents reception O.K. or NG+ICV4 (it carries out 
and ICV4 is verified (S161 1), and when the response from a user machine is the 
contents reception O.K. further, accounting of the contents to a user is performed 
(S1613).). (S1608) This accounting is processing which receives a contents tariff from a 
user's dealings account or credit card designated account like a last example. After 
accounting is completed, ICV5 is generated to an accounting end message, and it 
transmits to a user machine (S1 61 4). When either step S1 61 1 or the judgment of S1 61 2 
is No, in step S1615, ICV5 is generated in an accounting unfinished message, and it 
transmits to a user machine. 

[0309] The user machine which received accounting termination (or unfinished) 
message +ICV5 performs verification of ICV5, judges whether accounting was 
completed further with no problems, if it checks that accounting has ended, will 
generate a purchase log (refer to drawing 55 ), and will perform use of contents after 
saving in the memory of a self-device. When either step S1512 or the judgment of 
S1513 is No, the header received from the shop server in step S1514 and processing 
which deletes contents are performed. 

[0310] Next, a user machine, the key update process performed between log collection 
servers, and log transmitting processing are explained using drawing 61 and drawing 62. 
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Processing of a user machine is shown in the left-hand side of drawing 61 and drawing 
62, and processing of a log collection server is shown in right-hand side. This 
processing is performed in case the user machine which purchases contents from a 
shop server updates the public key certificate of the user machine stored in the user 
machine. The expiration date is set to the public key certificate of a user machine, and it 
is necessary to perform an update process for every fixed period. It explains from 
processing of drawing 61 . 

[031 1] First, a user machine and a log collection server perform mutual recognition 
(S1521 , S1721), and generate a session key. A user machine takes out the purchase 
log stored in the memory in a user machine device the condition [ authentication 
formation ], generates an alteration check value (ICV1) with the session key Kses to a 
purchase log, and transmits purchase log +ICV1 to a log collection server (S1522). 
[0312] A log collection server receives purchase log +ICV1 (S1722), verification of ICV1 
is performed (S1723), and, in Verification O.K., a log is saved in a database (S1724). In 
addition, a log collection server is good also as a configuration which performs 
verification processing of the electronic signature of the user machine in a purchase log, 
and checks the existence of a data alteration further. Further, a log collection server 
generates an alteration check value (ICV2) with the session key Kses to log reception 
O.K. data, and transmits log receiving-data +ICV2 to a user machine (S1725). When it 
is the verification NG of ICV1 of step S1723, the session key Kses generates an 
alteration check value (ICV2) to log receiving NG data, and log receiving NG data 
+ICV2 is transmitted to a user machine (S1 726). 

[0313] Log received-data +ICV2 is received (S1523), and when it is the verification O.K. 
of ICV2, and the log reception O.K. (S1524), a user machine generates the pair of the 
public key (KpDEV) and private key (KsDEV) for updating (S1525), it carries out 
generation addition of the alteration check value (ICV3), and transmits it to the 
generated public key (KpDEV) at a log collection server (S1526). 
[0314] a log collection server - public key (KpDEV) +ICV3 - from a user machine - 
receiving (S1727) - verification of ICV3 is performed (S1731), and when it is 
Verification O.K., generation addition of ICV4 to a public key reception O.K. message is 
carried out, and it transmits to a user machine (S1732). When verification of ICV3 is NG, 
generation addition of ICV4 is carried out, and it transmits to a user machine at a public 
key receiving NG message (S1733). 

[0315] When a log collection server carries out generation addition of ICV4 to a public 
key reception O.K. message and it transmits to a user machine (S1732), an issue office 
(CA) is received. Furthermore, with a receipt public key Issue of a public key certificate 
is required, the public key certificate (Cert_DEV) with which the user machine was 
updated is acquired (S1734), generation addition of the alteration check value ICV5 
over the updated public key certificate (CertJDEV) is carried out further, and it transmits 
to a user machine (S1735). 

[0316] After receiving public key receiving result (O.K. or NG) +ICV4, a user machine 
performs verification of ICV4, when it is the ICV4 verification O.K. and is the public key 
reception O.K. (S1532), performs reception (S1533) of updated public key certificate 
+ICV5, and performs verification of ICV5, and verification (S1534) of a public key 
certificate which received. When any verification is O.K., the public key in a public key 
certificate is taken out, the comparison (S1535) with the public key which self 
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transmitted is performed, when in agreement, the private key generated to updating and 
the received public key certificate are saved in the memory in a user machine (S1536), 
and elimination processing (S1537) of a log (log [ finishing / sending to a log collection 
server ]) is performed. 

[0317] When one judgment of steps S1532, S1534, and S1535 is No, an update 
process of an effective public key certificate is not performed, but processing is ended. 
[0318] Next, the contents sales check processing performed between log collection 
servers with a content provider is explained based on the flow of drawing 63. A log 
collection server manages the tariff allocation information over 1 or two or more tariff 
receipt entities of a contents tariff based on the purchase log received from a user 
machine, and performs response processing based on tariff allocation information 
according to the sales acknowledge request from a tariff receipt entity. A log collection 
server can compute the sales of the tariff receipt entity based on the sales of contents 
from the content ID contained in a purchase log, and the contents tariff allocation 
information which a log collection server holds beforehand. In addition, when it is the 
configuration which receives the log which stored the selling check data shown in 
drawing 55 (B), the sales of a tariff receipt entity can be computed based on the 
distribution information included in selling check data. 

[0319] First, mutual recognition (S1521, S1721) is performed between log collection 
servers with a content provider, and the session key Kses is generated. A log collection 
server takes out a content provider's identifier ID_CP from a content provider's (CP)'s 
public key certificate Cert_CP a condition [ formation of mutual recognition ] (S1722), 
and generates the sales data corresponding to ID_CP based on the log information 
stored in the database (S1723). As mentioned above, a content provider's allocation 
information is stored in collected log data, and each content provider's allocation tariff is 
called for based on log data. Furthermore, a log collection server carries out generation 
addition of the alteration check value ICV1 over sales data, and transmits to a content 
provider (CP) (S1724). 

[0320] Contents pro BAITA (CP) checks that it sells from a log collection server, data 
+ICV1 is received (S1522), ICV1 is verified, and there is no data alteration, and saves 
sales (S1523) data in memory (S1524). Verifying ICV1, in with a data alteration, data 
storage to memory is not performed, but it ends processing. In this case, the sales data 
demand to a log collection server is performed again. 

[0321] Next, the sales report processing performed between a shop server, a log 
collection server, and a content provider is explained based on drawing 64 and the 
processing flow of drawing 65. A shop server manages the sales data of contents and 
performs processing which transmits all the ********** data within a predetermined 
period, or the sales data for every tariff receipt entity to a log collection server. Drawing 
64 is processing which bundles up the sales of the whole contents selling processing 
which the shop server performed, and is transmitted to a log collection server, and 
processing of drawing 65 is processing which chooses the sales about the contents 
which the specific content provider offered, and is transmitted to a content provider 
during the contents selling processing which the shop server performed. 
[0322] It explains from sales package report processing of drawing 64. First, mutual 
recognition (S1631, S1731) is performed between a shop server and a log collection 
server, and the session key Kses is generated. A shop server picks out all the sales 
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data of a predetermined period from a database a condition [ formation of mutual 
recognition ], carries out generation addition of the alteration check value ICV1 over all 
sales data, and transmits to a log collection server (S1632). 

[0323] a log collection server - from a shop server - all - sales data +ICV1 is received 
(S1732), it checks that ICV1 is verified and there is no data alteration (S1733), and 
sales data are saved in memory (S1734). Verifying ICV1 , in with a data alteration, data 
storage to memory is not performed, but it ends processing. In this case, the sales data 
demand to a shop server is performed again. 

[0324] Specific content provider sales report processing of drawing 65 is explained. First, 
mutual recognition (S1641, S1741) is performed between a shop server and a content 
provider, and the session key Kses is generated. A shop server searches sales data 
based on ID_CP which took out ID_CP which is a content provider's identifier (S1642), 
and was taken out from a content provider's public key certificate Cert_CP obtained by 
mutual recognition the condition [ formation of mutual recognition ], and acquires the 
sales data of the specific content provider's offer contents (S1643). Furthermore it sells, 
generation addition of the alteration check value ICV1 over data is carried out, and it 
transmits to a log collection server (S1644). 

[0325] a log collection server - from a shop server - all - sales data +ICV1 is received 
(S1742), it checks that ICV1 is verified and there is no data alteration (S1743), and 
sales data are saved in memory (S1744). Verifying ICV1 , in with a data alteration, data 
storage to memory is not performed, but it ends processing. In this case, the sales data 
demand to a shop server is performed again. 

[0326] According to the configuration of this example, it becomes possible to collect 
contents purchase log data according to an update process of the public key certificate 
of a user machine, and the system management person (SH:System Holder) who 
manages a log collection server becomes possible [ grasping a contents sales situation 
certainly ]. The public key certificate of a user machine is required in mutual recognition 
processing with a shop server, and serves as conditions for having the public key 
certificate with which the effective term was set up to perform contents purchase. 
Moreover, it will perform with the public key with which verification of the signature 
added to purchase requested data etc. from a user machine is also taken out from the 
public key certificate of a user machine, and it is necessary also in signature verification 
to have the public key certificate with which the effective term was set up. Therefore, it 
is necessary to have the public key certificate which transmits log data to a log 
collection server, updates a public key certificate, and has an effective term in order for 
a user machine to perform contents purchase. The system management person 
(SH:System Holder) who manages a log collection server can collect certainly the are 
recording logs for every setting engine by setting up the expiration date of a public key 
certificate in one month or three etc. months. 

[0327] As mentioned above, the log data from a user machine are certainly collected by 
the log collection server which a system management person manages, and it becomes 
possible to manage a contents sales situation. Furthermore, based on the sales 
allocation information in log data, exact allocation is attained to sales profits acquisition 
rightful claimants, such as a content provider, in contents sales. 
[0328] Moreover, in this example, since it considered as the configuration which adds 
ICV and communicates at transmit data, using the session key Kses generated to the 
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data which communicate between each entity at the time of mutual recognition as a 
generation key of an alteration check value (ICV), the safety of commo data will 
increase further. 

[0329] In addition, although the example mentioned above explained as the mutual 
recognition processing between a user machine and a shop server, signature 
generation, and a configuration that performs all of signature verification processing, it is 
good also as a configuration carried out in use of the public key certificate within an 
expiration date in either as one of processings, i.e., mutual recognition, or signature 
generation, and a configuration that performs only signature verification processing as it 
is indispensable. 

[0330] [4. The use configuration of the public key certificate which recorded attribute 
data or attribute certificate use configuration] next the public key certificate which 
recorded attribute data, or an attribute certificate is explained. For example, in the 
contents distribution configuration mentioned above, a malicious shop management 
person becomes a user machine, and clears up, fictitious dealings of contents may be 
performed or the fictitious contents dealings between shops may be conducted with a 
content provider. Moreover, when it is the inaccurate server which the partner became a 
shop server and cleared up when believed that the user machine which is going to 
perform just dealings is a shop server, a communication link was started, and a 
contents purchase demand of a shop server partner was performed, for example, 
transmitting processing of the credit account number was performed, there is a 
possibility that processing of acquiring the credit account number from a user machine 
unjustly may be performed. Furthermore, a user machine becomes a shop, clears up 
and cannot deny possibility of processing performing fictitious sale of contents to other 
user machines etc., either. If such a situation occurs, it will become difficult for a system 
management person to grasp an exact contents distribution stereo. 
[0331] As a configuration which prevents false deals other than such the regular 
contents distribution root etc., the public key certificate or attribute certificate use 
configuration which recorded attribute data is explained hereafter. 
[0332] Attribute data is data which identify the classification of the entity which 
constitutes contents distribution systems, such as a registration authority which 
performs the issue examination of a user machine (DEVICE), a shop (SHOP), a content 
provider (CP), a service management person (SH), a public key certificate, and an 
attribute certificate. 

[0333] As an example of a configuration of attribute data, the table showing the contents 
of attribute data is shown in drawing 66. A different code is assigned to each entity as 
shown in drawing 66. For example, the issue demand of a public key certificate and an 
attribute certificate is received from a user machine or a shop, and "0001 " is assigned to 
the service management person as a system holder who collects the license over the 
contents which circulate on a "0000" contents distribution system in the registration 
authority which examines as an attribute code. In the example mentioned above, a 
service management person is an entity which manages the log information collection 
server which is the entity which manages a key, **, or the user machine authentication 
server that obtains and performs processing, and collects log information. 
[0334] Furthermore, the code of "0004" is assigned to the user machine which 
purchased and uses "0003" and contents for the contents distribution person who is the 
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management entity of the distribution server which distributes contents to a user 
according to "0002" and the demand from a shop (contents vender) at the contents 
vender as a shop which sells contents to a user machine. In addition, a different code 
according to the class is assigned to the entity concerning contents distribution. In 
addition, when not only the configuration that not necessarily assigns one code but a 
role and the shop where functions differ are located at a shop, a different code is 
assigned, and even if distinction of each is possible, it is good, and good also as a 
configuration which also assigns a different attribute code according to a certain 
category to a user machine. 

[0335] The attribute information mentioned above has the configuration included in a 
public key certificate, and the configuration which publishes a different attribute 
certificate from a public key certificate, and identifies an attribute with an attribute 
certificate. The example of a configuration of a public key certificate with attribute 
information is shown in drawing 67. 

[0336] The public key certificate shown in drawing 67 is the identifier of the algorithm 
used for the version number of a certificate, the serial number of the certificate which a 
public key certificate issue office (CA) assigns to a certificate user, and electronic 
signature and a parameter, and an issue office, the expiration date of a certificate, a 
certificate user's identifier (ex. user machine ID), a certificate user's public key, [0000] 
further mentioned above, and [0001]. - Electronic signature is included in attribute 
information, such as [nnnn], and a pan. The serial number of a certificate is made into a 
total of 16 bytes of for example, an issue year (4 bytes), the moon (2 bytes), a day (2 
bytes), and a serial number (8 bytes). The identifiable identifier which a registration 
authority defines or a random number, and the serial number may be used for a user 
name. Or it is good also as a configuration which makes a high-order byte a category 
and makes a lower byte the serial number. 

[0337] Electronic signature is data which generated the hash value with the application 
of the Hash Function to the whole attribute data in the identifier of the algorithm used for 
the version number of a certificate, the serial number of the certificate which a public 
key certificate issue station (CA) assigns to a certificate user, and electronic signature 
and a parameter, and an issue station, the expiration date of a certificate, a certificate 
user's identifier, a certificate user's public key, and the list, and were generated using 
the private key of an issue station to the hash value. 

[0338] a public key certificate issue office (CA) updates the public key certificate with 
which the expiration date went out, and performs creation of the inaccurate person list 
of [ for excluding the user who performed injustice ], management, and distribution (this 
- RIBOKESHON: - referred to as Revocation) while it publishes the public key 
certificate shown in drawing 67. 

[0339] On the other hand, in case this public key certificate is used, using the public key 
KpCA of the issue station which self holds, a user verifies the electronic signature of the 
public key certificate concerned, after he succeeds in verification of electronic signature, 
he picks out a public key from a public key certificate, and uses the public key 
concerned. Therefore, all the users using a public key certificate need to hold the public 
key of a common public key certificate issue station. 

[0340] Next, the data configuration of the public key certificate which does not have 
attribute information in drawing 68, and an attribute certificate is shown. (A) is a public 
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key certificate without attribute information, it is the data configuration which removed 
attribute information from the public key certificate shown in drawing 67, and a public 
key certificate issue office publishes it. (B) is an attribute certificate. An attribute 
certificate issue station (AA:Attribute Authority) publishes an attribute certificate. 
[0341] The serial number of the public key certificate corresponding to the attribute 
certificate with which the version number of a certificate and an attribute certificate issue 
office (AA) publish the attribute certificate shown in drawing 68, and this are the same 
as that of the serial number of the certificate of a correspondence public key certificate, 
and it has a function as link data which associate both certificates. The entity which is 
going to check the attribute of a communications partner with an attribute certificate can 
check a public key certificate and the attribute certificate to link based on the public key 
certificate serial number in which it was stored common to a public key certificate and 
an attribute certificate, and attribute information can be acquired from the attribute 
certificate which stored the same public key certificate serial number as a public key 
certificate. The serial number is made into a total of 16 bytes of for example, an issue 
year (4 bytes), the moon (2 bytes), a day (2 bytes), and a serial number (8 bytes). 
Furthermore, it is the data configuration which that of the identifier of the algorithm used 
for electronic signature and a parameter, and an attribute certificate issue office, the 
expiration date of a certificate, a certificate user's identifier (ex. user machine ID), and 
this is the same as that of the user name of a corresponding public key certificate, made 
the category the identifiable identifier which a registration authority defines or a random 
number, the serial number, or a high-order byte, and made the lower byte the serial 
number. Furthermore, [0000], [0001] which were mentioned above - The electronic 
signature of attribute information, such as [nnnn], and an attribute certificate issue office 
(AA) is included. 

[0342] Electronic signature is data which generated the hash value with the application 
of the Hash Function to the whole attribute data in the identifier of the algorithm used for 
the version number of a certificate, the serial number of a public key certificate, and 
electronic signature and a parameter, and an issue station, the expiration date of a 
certificate, a certificate user's identifier, and the list, and were generated using the 
private key of an attribute certificate issue station to the hash value. 
[0343] an attribute certificate issue office (AA) updates the attribute certificate with 
which the expiration date went out, and performs creation of the inaccurate person list 
of [ for excluding the user who performed injustice ], management, and distribution (this 
RIBOKESHON: - referred to as Revocation) while it publishes the attribute certificate 
shown in drawing 68 (B). 

[0344] Drawing which explains to drawing 69 the procedure which publishes newly the 
user machine which participates in contents dealings, and the public key certificate 
which a shop server uses, respectively is shown. In addition, the shop server 1010 and 
the user machine 1020 have the same configuration with above-mentioned drawing 1 
etc. having explained here. The service management object 1030 is a system holder 
(SH) which manages the whole contents distribution, and grasps the circulation situation 
of contents by the technique of collecting the logs which the contents key mentioned 
above rechips and are generated by processing or the contents purchase of a user 
machine. Here, it also has further a function as a registration authority (RA: Registration 
Authority) which performs reception of an issue demand of a public key certificate 
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besides the shop server 1010 and the user machine 1020, and an attribute certificate, 
and an examination. In addition, although it is the configuration in which the service 
management object 1030 has a function as a system holder (SH), and a function as a 
registration authority (RA), these may consist of these examples as a separate 
independent entity. 

[0345] By drawing 69, A1-A8 show the new issue procedure of the public key certificate 
in the user machine 1020, and B1-B7 show the new issue procedure of the public key 
certificate of the shop server 1010 by it. First, the new issue procedure of the public key 
certificate in the user machine 1020 is explained. 

[0346] (A1) mutual **** - the user machine 1020 performs mutual recognition between 
the service management objects 1030 first. However, at this time, since the user 
machine 1020 does not hold the public key certificate, mutual recognition using a public 
key certificate cannot be performed, but mutual recognition processing using the 
symmetry key cipher system previously explained using drawing 12, i.e., a share private 
key, and an identifier (ID) is performed (see the explanation about drawing 12 for 
details). 

[0347] (A2) If a public key and private key pair generation (A3) public key certificate 
issue demand (A4) examination & public key certificate issue demand (A5) public key 
certificate issue demand mutual recognition are materialized, in the cipher-processing 
section in a self device, the user machine 1020 will generate the pair of the public key 
registered newly and a private key, and will transmit the generated public key with a 
certificate issue demand to the sen/ice management object 1 030. The service 
management object 1030 which received the public key certificate issue demand 
examines an issue demand, and when the requirements as an entity which publishes a 
public key certificate are satisfied, it transmits a certificate issue demand to the public 
key certificate issue station (CA) 1040. In addition, when it is the public key certificate in 
which the public key certificate published here has the attribute information shown in 
drawing 68 (A), the sen/ice management object 1030 judges the attribute of the entity 
which has transmitted the certificate issue demand based on ID. 
[0348] The private key as a user machine identifier (ID) and confidential information is 
beforehand stored in the user machine which participates in contents distribution. These 
user machine ID and a private key are the configurations managed with the service 
management object 1030. The service management object 1030 A confidential 
information storing database is searched based on ID transmitted from a user machine. 
After checking beforehand that it is the registered user machine ID, only when a private 
key is taken out, mutual recognition based on a user machine and drawing 12 is 
performed using this key and it succeeds in mutual recognition, it checks that it is the 
user machine which can participate in contents distribution. 

[0349] (A6) The public key certificate issue office 1040 which received the public key 
certificate issue demand from the public key certificate issue (A7) public key certificate 
transmitting (A8) public key certificate transmitting service management object 1030 
stores the public key of a user machine, publishes a public key certificate (drawing 67 or 
drawing 68 (A)) with the electronic signature of the public key certificate issue office 
1040, and transmits it to the service management object 1030. The service 
management object 1030 transmits the public key certificate received from the public 
key certificate issue station 1040 to the user machine 1020. A user machine stores the 
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received public key certificate and the private key which generated the point by (A2) in a 
self-device, and becomes usable at the mutual recognition in the case of contents 
dealings, data encryption, decode processing, etc. 

[0350] On the other hand, although the issue procedure of the public key certificate of 
the shop server 1010 is the same as the certificate issue procedure in a user machine 
fundamentally, the procedure which has a shop server approved on the service 
management object 1030 as an entity which deals with sale of contents is needed. 
Therefore, it is necessary for the shop server 1010 to perform a license application 
(procedure of drawing 69 and B-2) with a self public key. It performs that this performs 
contents sale according to the policy which the service management object 1030 
defines as processing which the shop server 1010 accepts. The service management 
object 1030 can perform contents sale to which the shop server 1010 followed the 
policy which the service management object 1030 defines, and when it is accepted that 
the shop server 1010 observes a policy, it advances issue procedure of the public key 
certificate to a shop. Issue procedure processing of a public key certificate is the same 
as that of the case of the user machine mentioned above. 

[0351] Next, an update process of a public key certificate is explained using drawing 70. 
As a public key certificate is shown in drawing 67 and drawing 68 (A), the expiration 
date is set, and since the certificate with which the expiration date passed over the 
entity which uses a public key certificate cannot be used, an update process is 
performed within an expiration date and it is necessary to perform issue procedure of 
the public key certificate with which a new expiration date was set up. 
[0352] In drawing 70, A1-A8 show the updating procedure of the public key certificate in 
the user machine 1020, and B1-B7 show the updating procedure of the public key 
certificate of the shop server 1010. First, the updating procedure of the public key 
certificate in the user machine 1020 is explained. 

[0353] (A1) mutual **** the user machine 1020 performs mutual recognition between 
the service management objects 1030 first. Since the user machine 1020 holds the 
public key certificate effective now at this time, mutual recognition using a public key 
certificate is performed. This is the mutual recognition processing previously explained 
using drawing 13. In addition, when the expiration date of a public key certificate on 
hand has already passed, it may be made to perform mutual recognition processing 
using the share private key previously explained using drawing 12 like new issue 
procedure, and an identifier (ID). 

[0354] (A2) If a new public key and the renewal demand mutual recognition of a renewal 
demand (A5) of renewal demand (A4) of private key pair generation (A3) public key 
certificate examination & public key certificate public key certificate are materialized, the 
user machine 1020 will transmit the public key which generated and generated the pair 
of the new public key and private key for updating with the renewal demand of a 
certificate to the service management object 1030 in the cipher-processing section in a 
self device. The service management object 1 030 which received the renewal demand 
of a public key certificate transmits the renewal demand of a certificate to the public key 
certificate issue station (CA) 1040, when an updating demand is examined and the 
requirements for updating are satisfied. In addition, when it is the public key certificate in 
which the public key certificate published here has the attribute information shown in 
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drawing 68 (A), the service management object 1030 judges the attribute of the entity 
which has transmitted the certificate issue demand based on ID. 
[0355] (A6) The public key certificate issue office 1040 which received the renewal 
demand of a public key certificate from the renewal (A7) public key certificate of public 
key certificate transmitting (A8) public key certificate transmitting service management 
object 1030 stores the new public key of a user machine, publishes a public key 
certificate (drawing 67 or drawing 68 (A)) with the electronic signature of the public key 
certificate issue office 1040, and transmits it to the service management object 1030. 
The service management object 1030 transmits the public key certificate received from 
the public key certificate issue station 1040 to the user machine 1020. A user machine 
stores the received public key certificate and the private key which generated the point 
by (A2) in a self-device, and becomes usable at the mutual recognition in the case of 
contents dealings, data encryption, decode processing, etc. 

[0356] On the other hand, although the updating procedure of the public key certificate 
of the shop server 1010 is the same as the renewal procedure of a certificate in a user 
machine fundamentally, it is necessary to perform renewal of the above-mentioned 
license application (procedure of drawing 70 and B-2). When the service management 
object 1030 accepts the renewal of a license of the shop server 1010, updating 
procedure of the public key certificate to a shop is advanced. Updating procedure 
processing of a public key certificate is the same as that of the case of the user machine 
mentioned above. 

[0357] Next, the new issue procedure of an attribute certificate is explained using 
drawing 71 . An attribute certificate is a certificate shown in drawing 68 (B), and an 
attribute certificate is published after issue of the public key certificate shown in drawing 
68 (A). By drawing 71 , A1 -A7 show the new issue procedure of the attribute certificate 
in the user machine 1020, and B1-B7 show the new issue procedure of the public key 
certificate of the shop server 1010 by it. First, the new issue procedure of the public key 
certificate in the user machine 1 020 is explained. 

[0358] (A1) mutual **** the user machine 1020 performs mutual recognition between 
the service management objects 1030 first. At this time, since the user machine 1020 
has already held the public key certificate issue station public key certificate, it performs 
mutual recognition using a public key certificate. 

[0359] (A2) Attribute certificate issue demand (A3) If examination & attribute certificate 
issue demand (A4) attribute certificate issue demand mutual recognition is materialized, 
the user machine 1020 will transmit an attribute certificate issue demand to the service 
management object 1030. The service management object 1030 which received the 
attribute certificate issue demand examines an issue demand, and when the 
requirements as an entity which publishes an attribute certificate are satisfied, it 
transmits a certificate issue demand to the attribute certificate issue station (AA) 1050. 
In addition, the sen/ice management object 1030 judges the attribute of the entity which 
has transmitted the certificate issue demand here based on ID. In the user vessel which 
takes part in contents distribution as mentioned above, it checks that a user machine 
identifier (ID) is stored beforehand, these user machine ID is the configuration managed 
with the sen/ice management object 1030, and the service management object 1030 is 
the user machine which can take part in contents distribution ID transmitted from a user 
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machine, and by carrying out comparison reference with the registered user machine ID 
beforehand. 

[0360] (A5) The attribute certificate issue office 1050 which received the attribute 
certificate issue demand from the attribute certificate issue (A6) attribute certificate 
transmitting (A7) attribute certificate transmitting service management object 1030 
stores the attribute information on a user machine, publishes an attribute certificate 
(drawing 68 (B)) with the electronic signature of the attribute certificate issue office 1050, 
and transmits it to the service management object 1030. The service management 
object 1030 transmits the attribute certificate received from the attribute certificate issue 
station 1050 to the user machine 1020. A user machine stores the received attribute 
certificate in a self-device, and uses it for the attribute check processing in the case of 
contents dealings. 

[0361] On the other hand, the issue procedure (B1-B7) of the attribute certificate of the 
shop server 1010 is the same as the certificate issue procedure in a user machine 
fundamentally. Moreover, the updating procedure of an attribute certificate also turns 
into new issue procedure and same procedure. 

[0362] Next, the contents dealings accompanied by the attribute check processing by 
the attribute certificate or the attribute check processing using the attribute information 
stored in the public key certificate are explained. 

[0363] The processing configuration which combines with drawing 72 at the time of 
mutual recognition, and performs attribute check processing is shown. The configuration 
of drawing 72 is the same as the system configuration of drawing 1 explained previously. 
That is, let the shop server 1010 which performs sale of contents, the user machine 
1020 which performs contents purchase, and the user machine authentication server 
1030 be components. Here, the user machine authentication server 1030 is under 
management of the service management object mentioned above. Processing 
advances in order of (20) from the number (1) of drawing 72. The detail of processing is 
explained to each numerical order. 

[0364] (1) The user machine 1020 which is going to purchase mutual recognition and 
attribute check processing contents from the shop server 1010 performs mutual 
recognition processing between shop servers. Between two means to perform data 
transmission and reception, it is performed that a partner checks mutually whether you 
are a right data communication person, and performs required data transfer mutually 
after that. Check processing of whether a partner is a right data communication person 
is mutual recognition processing. The configuration which performs encryption 
processing by using as a share key the session key which performed generation of a 
session key and was generated at the time of mutual recognition processing, and 
performs data transmission is one desirable data transfer method. After signature 
verification of the issue station of a public key certificate, mutual recognition processing 
of a public key system takes out the public key of a partner mold, and is performed. 
Please refer to the explanation about above-mentioned drawing 13 for details. 
[0365] Furthermore, attribute check processing is performed in this example. The shop 
server 1010 checks that it is data in which it is shown that the attribute is a user 
machine, when attribute data is stored in the public key certificate of a communications 
partner. When attribute data is not stored in the public key certificate, an attribute is 
checked using an attribute certificate. In an attribute certificate, since the signature is 
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made using the private key of an attribute certificate issue station, after performing 
signature verification using public key:KpAA of an attribute certificate issue station, 
checking that it is a just certificate and the "serial number" and/or "a user (ID)" of an 
attribute certificate checking whether it is in agreement with the "serial number" in a 
public key certificate, and/or "a user (ID)", the attribute information in a certificate is 
checked. 

[0366] On the other hand, the user machine 1020 checks that it is data in which it is 
shown that the attribute is a shop, when attribute data is stored in the public key 
certificate of a communications partner. When attribute data is not stored in the public 
key certificate, signature verification is performed about an attribute certificate using 
public key:KpAA of an attribute certificate issue station, and it checks that it is a just 
certificate, and after checking whether the "serial number" and/or "a user (ID)" of an 
attribute certificate are in agreement with the "serial number" in a public key certificate, 
and/or "a user (ID)", the attribute information in a certificate is checked. 
[0367] The shop server 1010 checks that the attribute of a contents purchase demand 
subject's public key certificate or an attribute certificate is a user machine, and the user 
machine 1020 checks that the attribute of the public key certificate of a contents 
purchase demand place or an attribute certificate is a shop, and shifts to subsequent 
processing. 

[0368] The flow of attribute check processing is shown in drawing 73. Drawing 73 (A) is 
attribute check processing using a public key certificate in case attribute data is stored 
in the public key certificate, and (B) is attribute check processing in which the attribute 
certificate was used. 

[0369] It explains from the flow of drawing 73 (A). First, in step S2101 , mutual 
recognition processing using a public key certificate is performed (refer to drawing 13), 
and attribute information is taken out from a partner's public key certificate a condition 
[ authentication having been materialized ] (judgment Yes of S2102). When attribute 
information is just, it judges with (the judgment Yes of S2104), mutual recognition, and 
the thing in which the attribute check succeeded (S2105), and it shifts to subsequent 
processing. In addition, when for example, a user machine tends to access a shop 
server as an attribute is just, and it is going to perform the contents purchase demand, if 
an attribute is a shop, it will judge with it being just, and if it is the attribute code which 
shows other than a shop (for example, other user machines), it will judge with it not 
being just. This judgment processing for example, when performing a contents 
purchase demand to a shop server The code which was made to contain the step which 
performs attribute code comparison processing, and was beforehand given to the shop 
into the contents purchase demand processing sequence (ex. executive program) 
[0002], The attribute code acquired from the public key certificate or attribute certificate 
of a communications partner (entity) is compared, if in agreement, it will judge with it 
being just, and if inharmonious, it will judge with it not being just. Or it is good also as a 
configuration which displays on a display the attribute code acquired from the public key 
certificate or attribute certificate of a communications partner (entity), compares the 
attribute code set as the entity assumed as a communications partner, and the user 
itself judges. When a judgment is No at steps S2102 and S21 04, if mutual recognition 
and an attribute check are failure, it will judge (S2106), and subsequent processing is 
stopped. 
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[0370] By the processing executive program to a shop, the judgment of attribute 
justification as mentioned above The code [0002] beforehand given to the shop, and the 
public key certificate of a communications partner (entity), Or a step is performed as 
processing which compares the attribute code acquired from the attribute certificate. It 
obtains in the key or ** which a user machine performs to a user machine authentication 
server. Moreover, in a demand processing activation sequence (ex. program) A step is 
performed as processing which compares the code [0001] beforehand given to the user 
machine authentication server with the attribute code acquired from the public key 
certificate of a communications partner (entity), or the attribute certificate. In addition, 
also in the communications processing between a shop and a user machine 
authentication server, a step is performed in the processing sequence (ex. program) 
which specifies and performs a communications partner by each entity as processing 
which compares the attribute code beforehand set up as a just communications partner 
with the attribute code acquired from the public key certificate of a communications 
partner (entity), or the attribute certificate. 

[0371] Next, the flow which applied the attribute certificate of drawing 73 (B) is 
explained. First, in step S2201, mutual recognition processing using a public key 
certificate is performed (refer to drawing 13). Verification of a partner's attribute 
certificate is performed using the public key of an attribute certificate issue station a 
condition [ authentication having been materialized ] (S2203). (judgment Yes of S2202) 
Verification is successful and it is contingent [ on what (judgment Yes of S2204) the 
public key certificate and the attribute certificate to link were checked for based on the 
public key certificate serial number in which it was stored common to a public key 
certificate and an attribute certificate ]. Attribute information is taken out from the 
attribute certificate which stored the same public key certificate serial number as a 
public key certificate (S2205). When attribute information is just, it judges with (the 
judgment Yes of S2206), mutual recognition, and the thing in which the attribute check 
succeeded (S2207), and it shifts to subsequent processing. When a judgment is No at 
steps S2202, S2204, and S2206, if mutual recognition and an attribute check are failure, 
it will be judged (S2208), and subsequent processing is stopped. 
[0372] (2) If Transaction ID, purchase requested data generation and the (3) purchase 
requested data transmitting above-mentioned shop server 1010, the mutual recognition 
between the user machines 1020, and an attribute check are successful, the user 
machine 1020 will generate the purchase requested data of contents. As the shop ID 
which is the identifier of the shop server 1010 which the configuration of purchase 
requested data is a configuration shown in drawing 14 (a) explained previously, and is 
the demand place of contents purchase, and an identifier of dealings It has each data of 
the transaction ID which the cipher-processing means of the user machine 1020 
generates based on a random number, and the content ID as an identifier of the 
contents of which a user machine expects purchase further, and the electronic signature 
of the user machine to these data is added. 

[0373] (4) The shop server which received the purchase requested data shown in 
received-data verification drawing 14 (a) from the user machine 1020 performs 
verification processing of received data. Previously, as explained using drawing 15, 
verification processing takes out public key:KpDEV of a user machine from a public key 
certificate after verification of public key certificate Cert_DEV of a user machine, and 
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verifies the user machine signature of purchase requested data using public 
key:Kp_DEV of a user machine. 

[0374] If verification is judged as there being no alteration of O.K., i.e., purchase 
requested data, it will judge that received data are just contents purchase requested 
data. When verification is abortive, purchase requested data is judged to be those with 
an alteration, and the processing to the purchase requested data is stopped. 
[0375] (5) In encryption contents and the encryption contents key data 1 (shop) 
transmitting shop server 1010, verification of purchase requested data is completed, 
and if it judges with it being the just contents purchase demand without a data alteration, 
the shop server 1010 will transmit encryption contents and the encryption contents key 
data 1 (shop) to a user machine. Encryption contents: Kc (content) which each of these 
is data stored in the contents database, and enciphered contents by the contents key, 
and a contents key: It is encryption contents key data:KpDAS (Kc) which enciphered Kc 
with the public key of the user machine authentication server (DAS) 1030. 
[0376] The encryption contents key data 1 (shop) are a configuration shown in drawing 
14 (b) explained previously. That is, it has shop processing No. which the shop server 
1010 generated with the user machine ID which is the identifier of the user machine 
1020 which is the demand origin of contents purchase, purchase requested data (data 
except the user machine public key certificate of drawing 14 (a)), and contents dealings, 
and encryption contents key data:KpDAS (Kc), and the electronic signature of the shop 
server 1010 to these data is added. Furthermore, the public key certificate of the shop 
server 1010 is attached to the encryption contents key data 1 (shop), and it is sent to 
the user machine 1020. In addition, in the above-mentioned mutual recognition 
processing or processing of the before, a shop server public key certificate does not 
already need to send anew necessarily, when finishing [ sending to a user machine 
side ]. 

[0377] (6) From the received-data verification shop server 1010 to encryption contents : 
the user machine 1020 which received the encryption contents key data 1 (shop) 
indicated to be Kc (content) to drawing 14 (b) performs verification processing of the 
encryption contents key data 1 (shop). This verification processing is the same 
processing as the processing flow of drawing 15 explained previously, and the user 
machine 1 020 performs verification of the public key certificate of the shop server first 
received from the shop server 1010 using the public key KpCA of an issue office (CA), 
and performs verification of a shop signature of the encryption contents key data 1 
shown in drawing 14 (b) using the public key KpSHOP of a shop server picked out from 
the public key certificate next. 

[0378] (7) After mutual recognition and the attribute check processing user machine 
1020 receive encryption contents:Kc (content) and the encryption contents key data 1 
(shop) from the shop server 1010 and finish verification of the encryption contents key 
data 1 (shop), the user machine 1020 accesses the user machine authentication server 
1030, and performs mutual recognition processing and attribute check processing 
between the user machine 1020 and the user machine authentication server 1030. This 
processing is performed in the same procedure as the mutual recognition processing 
between the above-mentioned shop server 1010 and the user machine 1020, and 
attribute check processing. 
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[0379] (8) If it obtains in encryption contents key data (user machine) and an encryption 
contents key, or ** and the mutual recognition between the demand sending-user 
machine 1020 and the user machine authentication server 1030 and an attribute check 
are materialized, to the user machine authentication server 1030, the user machine 
1020 will be obtained in the encryption contents key KpDAS (Kc), the encryption 
contents key, or ** which received from the shop server 1010 previously, and will 
transmit a demand. The configuration of encryption contents key data (user machine) is 
a configuration shown in drawing 14 (c) explained previously. That is, it has encryption 
contents key data (data except the shop public key certificate of drawing 14 (b)) which 
obtained in an encryption contents key or ** and were received from user machine 
authentication server ID which is the identifier of the user machine authentication server 
1030 which is the demand place of a demand, and the shop server 1010, and the 
electronic signature of the user machine 1020 to these data is added. Furthermore, the 
public key certificate of the shop server 1010 and the public key certificate of the user 
machine 1020 are attached to encryption contents key data (user machine), and it is 
sent to the user machine authentication server 1030. In addition, when the user 
machine authentication server 1030 has already held the user machine public key 
certificate and the shop server public key certificate, it is not necessary to necessarily 
send anew. 

[0380] (9) Obtain the user machine authentication server 1030 which obtained from the 
received-data verification user machine 1020 in encryption contents key data (user 
machine) and an encryption contents key, or **, and received the demand (drawing 14 
(c)) in an encryption contents key or **, and it performs verification processing of a 
demand. This verification processing is the same processing as the processing flow of 
drawing 15 explained previously. The user machine authentication server 1030 
Verification of the public key certificate of the user machine first received from the user 
machine 1020 is performed using the public key KpCA of an issue station (CA). Next, 
verification of the electronic signature of the encryption contents key data (user 
machine) shown in drawing 14 (c) using the public key KpDEV of the user machine 
picked out from the public key certificate is performed. Furthermore, verification of the 
public key certificate of a shop server is performed using the public key KpCA of an 
issue office (CA), and verification of a shop signature of (5) encryption contents key 
data 1 contained in the encryption contents key data (user machine) shown in drawing 
14 (c) using the public key KpSHOP of a shop server picked out from the public key 
certificate next is performed. Moreover, when the wording of a telegram which the user 
machine transmitted is contained during the format shown in drawing 14 (c), verification 
of the wording of a telegram is performed if needed. 

[0381] (10) Obtain in an encryption contents key or ** and set to the processing user 
machine authentication server 1030. If it judges with it obtaining in the encryption 
contents key data (user machine) and the encryption contents key, or ** which received 
from the user machine 1020, and verification of a demand being completed, and it 
obtaining in a just key or **, and being a demand The encryption contents key with 
which the user machine authentication server 1030 is contained in encryption contents 
key data (user machine), Namely, a contents key : Decode data:KpDAS (Kc) which 
enciphered Kc with the public key KpDAS of the user machine authentication server 
(DAS) 1030 with the private key KsDAS of the user machine authentication server 1030, 
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and the contents key Kc is acquired, further ~ the contents key Kc public key [ of a 
user machine ]: encryption contents key: enciphered by KpDEV -- KpDEV (Kc) is 
generated. That is, it obtains in the key or ** of KpDAS(Kc) ->Kc->KpDEV (Kc), and 
processing is performed. 

[0382] As previously explained using drawing 16, this processing from encryption 
contents key data (user machine) Contents key data enciphered with the public key 
KpDAS of the user machine authentication server (DAS) 1030 : KpDAS (Kc) is taken 
out. Next, it is the processing which re-enciphers the contents key Kc which decoded 
with the private key KsDAS of the user machine authentication server 1030, and 
acquired the contents key Kc, next was acquired by decode by public key:KpDEV of a 
user machine, and generates encryption contents key:KpDEV (Kc). 
[0383] (1 1) In mutual recognition and the attribute check processing user machine 
authentication server 1030, if it obtains in the above-mentioned key or above-mentioned 
** of an encryption contents key and processing is completed, the user machine 
authentication server 1030 will access the shop server 1010, and will perform mutual 
recognition processing and attribute check processing between the user machine 
authentication server 1030 and the shop server 1010. This processing is performed in 
the same procedure as the mutual recognition processing between the above- 
mentioned shop server 1010 and the user machine 1020, and attribute check 
processing. 

[0384] (12) If the mutual recognition between the encryption contents data sending-user 
machine authentication server 1030 and the shop server 1010 and attribute check 
processing are materialized, the user machine authentication server 1030 will transmit 
encryption contents key data (DAS) to the shop server 1010. The configuration of 
encryption contents key data (DAS) is a configuration shown in drawing 17 (d) 
explained previously. It obtains in Shop ID, encryption contents key data (user machine) 
(data except the shop of drawing 14 (c), and a user machine public key certificate), and 
the further above-mentioned key or ** that is the identifier of the shop server 1010 which 
is the demand place of contents purchase, and has encryption contents key 
data:KpDEV (Kc) which the user machine authentication server 1030 generated by 
processing, and the electronic signature of the user machine authentication server 1030 
to these data is added. Furthermore, the user machine authentication server 1030 and 
the public key certificate of the user machine 1020 are attached to encryption contents 
key data (DAS), and it is sent to the shop server 1010. In addition, when a shop server 
is already possession ending, it does not necessarily need to send these public key 
certificates anew. 

[0385] Moreover, when it is the existence accepted to be the independent organization 
which can trust the user machine authentication server 1030 Without considering as the 
data configuration which contains (8) encryption contents key data (user machine) 
which the user machine generated as it is, as shown in drawing 17 (d), as shown in 
drawing 18 (d 1 ), encryption contents key data (DAS) The user machine authentication 
server 1030 extracts each data of the contents key KpDEV (Kc) enciphered with the 
public key of the user machine ID, Transaction ID, content ID, the shop processing NO, 
and a user device. A signature is added to these and it is good also as encryption 
contents key data (DAS). In this case, since verification of (8) encryption contents key 
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data (user machine) becomes unnecessary, the public key certificate to attach is good 
only with the public key certificate of the user machine authentication server 1030. 
[0386] (13) The shop server 1010 which received encryption contents key data (DAS) 
(drawing 17 (d)) from the received-data verification user machine authentication server 
1030 performs verification processing of encryption contents key data (DAS). This 
verification processing is the same processing as the processing flow of drawing 15 
explained previously. The shop server 1010 Verification of the public key certificate of 
the user machine authentication server first received from the user machine 
authentication server 1030 is performed using the public key KpCA of an issue station 
(CA). Next, verification of the electronic signature of the encryption contents key data 
(DAS) shown in drawing 17 (d) using the public key KpDAS of the user machine 
authentication server 1030 picked out from the public key certificate is performed. 
Furthermore, verification of the public key certificate of a user machine is performed 
using the public key KpCA of an issue office (CA), and verification of a user machine 
signature of (8) encryption contents key data (user machine) contained in the encryption 
contents key data (DAS) shown in drawing 17 (d) using the public key KpDEV of the 
user machine picked out from the public key certificate next is performed. Moreover, 
when the wording of a telegram which the user machine transmitted is contained during 
the format shown in drawing 14 (c), verification of the wording of a telegram is 
performed if needed. 

[0387] In addition, when the shop server 1010 receives the encryption contents key data 
(DAS) which were explained previously and which drawing 18 (d'j simplified The shop 
server 1010 performs verification of the public key certificate of a user machine 
authentication server using the public key KpCA of an issue station (CA). Next, it 
becomes processing of only performing verification of the electronic signature of the 
encryption contents key data (DAS) shown in drawing 18 (d') using the public key 
KpDAS of the user machine authentication server 1030 picked out from the public key 
certificate. 

[0388] (14) Mutual recognition and attribute check (15) encryption contents key 
requested data transmission, next the user machine 1020 transmit encryption contents 
key requested data to a shop server. In addition, when performing a demand in a 
different session from a pre- demand in this case, mutual recognition and an attribute 
check are performed again, and encryption contents key requested data is transmitted 
to the shop server 1010 from the user machine 1020 a condition [ mutual recognition 
and an attribute check having been materialized ]. Moreover, when the wording of a 
telegram which the user machine transmitted is contained during the format shown in 
drawing 14 (c), verification of the wording of a telegram is performed if needed. 
[0389] The configuration of encryption contents key requested data is as being shown in 
drawing 17 (e). Encryption contents key requested data as the shop ID which is the 
identifier of the shop server 1010 which is the demand place of contents purchase, and 
an identifier of dealings The transaction ID which the cipher-processing means of the 
user machine 1020 generates based on a random number Furthermore, the content ID 
as an identifier of the contents of which a user machine expects purchase, Furthermore, 
it has shop processing No. contained in the data (refer to drawing 14 (b)) which the 
shop generated previously and have been transmitted to the user machine 1020 as 
encryption contents key data 1 (shop), and the electronic signature of the user machine 



78 



to these data is added. Furthermore, the public key certificate of a user machine is 
attached to encryption contents key requested data, and it is sent to the shop server 
1010. In addition, a public key certificate does not necessarily need to send anew, when 
finishing [ the storage to a shop side ] already. 

[0390] (16) Verification processing and the shop server 1010 which received (17) 
accounting encryption contents key requested data from the user machine perform 
verification processing of encryption contents key requested data. This is the processing 
same with having explained using drawing 15. If data verification ends, the shop server 
1010 will perform accounting about dealings of contents. Accounting is processing 
which receives a contents tariff from a user's dealings account. The received contents 
tariff is distributed to various persons concerned, such as a copyright person of contents, 
a shop, and a user machine authentication server manager. 
[0391] By the time it results in this accounting, since the treatment process is 
indispensable, the shop server 1010 cannot perform accounting by processing only 
between user machines by obtaining in the key or ** of an encryption contents key by 
the user machine authentication server 1030. Moreover, since decode of an encryption 
contents key cannot be performed in the user machine 1020, use of contents cannot be 
performed. The contents of contents dealings which the user machine authentication 
server obtained in all keys or ** in the user machine authentication server license 
management database explained using drawing 6, and performed processing are 
recorded, and the grasp of the contents dealings used as all the candidates for 
accounting is attained. Therefore, the contents dealings by the shop side independent 
become impossible, and an unjust contents sale is prevented. 
[0392] (18) After the accounting in the encryption contents key data 2 (shop) 
transmitting shop server 1010 is completed, the shop server 1010 transmits the 
encryption contents key data 2 (shop) to the user machine 1020. 
[0393] The configuration of the encryption contents key data 2 (shop) is as being shown 
in drawing 17 (f) explained previously. It has encryption contents key data (DAS) (data 
except the user machine of drawing 17 (d), and a user machine authentication server 
public key certificate) received from the user machine ID which is the identifier of the 
user machine 1020 which is the demand origin of an encryption contents key demand, 
and the user machine authentication server 1030, and the electronic signature of the 
shop server 1010 to these data is added. Furthermore, the public key certificate of the 
shop server 1010 and the public key certificate of the user machine authentication 
server 1030 are attached to the encryption contents key data 2 (shop), and it is sent to 
the user machine 1020. In addition, when the user machine 1020 has already held the 
user machine authentication server public key certificate and the shop server public key 
certificate, it is not necessary to necessarily send anew. 

[0394] In addition, when it is the existence accepted to be the independent organization 
which can trust the user machine authentication server 1030 and the encryption 
contents key data (DAS) which the shop server 1010 receives from the user machine 
authentication server 1030 are encryption contents key data (DAS) which were 
explained previously and which drawing 18 (d 1 ) simplified, the shop server 1010 sends 
the encryption contents key data 2 (shop) shown in drawing 18 (f) to a user machine. 
That is, the public key certificate of the shop server 1010 and the public key certificate 
of the user machine authentication server 1030 attach to the data which added the 



79 



signature of a shop server to the simplified encryption contents key data (DAS) which 
are shown in drawing 18 (d 1 ), and it sends to the user machine 1020. 
[0395] (19) From the received-data verification shop server 1010, the user machine 
1020 which received the encryption contents key data 2 (shop) performs verification 
processing of the encryption contents key data 2 (shop). This verification processing is 
the same processing as the processing flow of drawing 15 explained previously, and the 
user machine 1020 performs verification of the public key certificate of the shop server 
first received from the shop server 1010 using the public key KpCA of an issue office 
(CA), and performs verification of the electronic signature of the encryption contents key 
data 2 (shop) shown in drawing 17 (f) using the public key KpSHOP of the shop server 
1010 picked out from the public key certificate next. Furthermore, verification of the 
public key certificate of the user machine authentication server 1030 is performed using 
the public key KpCA of an issue office (CA), and signature verification of (12) encryption 
contents key data (DAS) contained in the encryption contents key data 2 (shop) shown 
in drawing 17 (f) using the public key KpDAS of the user machine authentication server 
1030 picked out from the public key certificate next is performed. Moreover, when a 
certain transmitted wording of a telegram is contained during the format shown in 
drawing 17 (f), verification of the wording of a telegram is performed if needed. 
[0396] (20) The user machine 1020 which verified the encryption contents key data 2 
(shop) received from the preservation processing shop server 1010 Encryption contents 
key:KpDEV (Kc) enciphered with the self public key KpDEV contained in the encryption 
contents key data 2 (shop) is decoded using the self private key KsDEV. Furthermore, it 
enciphers using the preservation key Ksto of a user machine, encryption contents 
key:Ksto (Kc) is generated, and this is stored in the storage means of the user machine 
1020. Encryption contents key:Ksto (Kc) is decoded using the preservation key Ksto, 
using the contents key Kc which took out and took out the contents key Kc, in the 
utilization time of contents, decode processing of the encryption contents Kc (Content) 
is performed, and contents (Content) are reproduced and performed to it. 
[0397] As stated, in each processing in accordance with contents distribution, as 
mentioned above, each entity which performs a communication link Since it considered 
as the configuration which performs processing according to an attribute check after 
checking that it is, a partner's attribute, for example, user machine Unjust contents 
dealings, for example, a shop, become a user machine, and it clears up, and it becomes 
processing of trading in contents, or a shop server, it clears up, and processing of 
acquiring the credit account number from a user machine unjustly is prevented. 
[0398] For example, if a user machine is checked according to an attribute check as the 
communications partner of a user machine is a shop, it feels easy about the processing 
accompanying the contents purchase as processing to a shop, can perform it, and if it is 
checked that a communications partner is a user machine authentication server in an 
attribute check, the processing to a user machine authentication server, for example, a 
key, recovers it, and it can perform transmission of a demand. Since the check of the 
attribute of a communications partner is attained by performing an attribute check 
according to this configuration, just processing according to each communications 
partner is performed. Furthermore, since it becomes without transmitting to an 
inaccurate communications partner accidentally [ restricted data ], prevention of a data 
leakage is also possible. 
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[0399] Next, the partner check by mutual recognition processing is not performed, but 
only signature verification of received data is performed, and the gestalt which performs 
an attribute check and performs contents dealings processing is explained to be the 
existence of a data alteration using drawing 74. 

[0400] Processing shown in drawing 74 is performed as processing which excluded 
mutual recognition processing from the processing shown in drawing 72. Processing 
advances in order of (16) from the number (1) of drawing 74. The detail of processing is 
explained to each numerical order. 

[0401] (1) Transaction ID, purchase requested data generation and (2) purchase 
requested data transmitting ****, and the user machine 1020 generate the purchase 
requested data of contents, and transmit it to the shop server 1010. The configuration of 
purchase requested data is a configuration shown in drawing 14 (a) explained 
previously. 

[0402] (3) The shop server which received the purchase requested data shown in 
received-data verification drawing 14 (a) from the user machine 1020 performs 
verification processing of received data. The check of attribute information also 
performs verification processing in this example collectively with the check of the 
alteration existence of purchase requested data. 

[0403] A received-data verification processing flow in case attribute information is stored 
in drawing 75 at the public key certificate is shown. First, the shop server 1010 which 
received the message, the signature (purchase requested data), and the public key 
certificate of a user machine (S2301) verifies the public key certificate of a user machine 
using the public key KpCA of a public key certificate issue station (S2302). If verification 
is materialized (it is Yes at S2303), public key:KpDEV of a user machine will be taken 
out from a public key certificate (S2304), and the user machine signature of purchase 
requested data will be verified using ** and public key:KpDEV of a user machine 
(S2305). Furthermore, if verification is successful (it is Yes at S2306), attribute 
information is taken out from a public key certificate (S2307), and it judges whether they 
are ** and a just attribute (attribute which shows a user machine here) (S2308), and 
when just, it will shift to the next processing as a verification processing success 
(S2309). When a judgment is No at steps S2303, S2306, and S2308, processing is 
stopped as verification processing failure (S2310). 

[0404] Next, the received-data verification processing using a public key certificate and 
an attribute certificate is explained using the flow of drawing 76. First, the shop server 
1010 which received the message, the signature (purchase requested data), the public 
key certificate of a user machine, and the attribute certificate (S2401) verifies the public 
key certificate of a user machine using the public key KpCA of a public key certificate 
issue station (S2402). If verification is materialized (it is Yes at S2403), public 
key:KpDEV of a user machine will be taken out from a public key certificate (S2404), 
and the user machine signature of purchase requested data will be verified using ** and 
public key:KpDEV of a user machine (S2405). Furthermore, a success (it is Yes at 
S2406) of verification verifies an attribute certificate using the public key KpAA of an 
attribute certificate issue office (S2407). Attribute information is taken out from an 
attribute certificate a condition [ verification having been successful (it being Yes at 
S2408) ] (S2409), and it judges whether they are ** and a just attribute (attribute which 
shows a user machine here) (S2410), and when just, it shifts to the next processing as 
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a verification processing success (S241 1). When a judgment is No at steps S2403, 
S2406, S2408, and S2410, processing is stopped as verification processing failure 
(S2412). 

[0405] (4) In encryption contents and the encryption contents key data 1 (shop) 
transmitting shop server 1010, verification of purchase requested data is completed, 
and if it is judged with it being the just contents purchase demand without a data 
alteration and an attribute is checked, the shop server 1010 will transmit encryption 
contents and the encryption contents key data 1 (shop) (refer to drawing 14 (b)) to a 
user machine. 

[0406] (5) From the received-data verification shop server 1010 to encryption contents : 
the user machine 1020 which received the encryption contents key data 1 (shop) 
indicated to be Kc (content) to drawing 14 (b) performs verification processing of the 
encryption contents key data 1 (shop) and attribute check processing. This verification 
processing is the same processing as the processing flow of drawing 75 or drawing 76 
explained previously. In this case, processing will be stopped when the attribute of a 
public key certificate or an attribute certificate does not show the shop. 
[0407] (6) Obtain in encryption contents key data (user machine) and an encryption 
contents key, or **, and to the user machine authentication server 1030, obtain demand 
transmission, next the user machine 1020 in the encryption contents key KpDAS (Kc), 
the encryption contents key, or ** which received from the shop server 1010 previously, 
and they transmit a demand (refer to drawing 14 (c)). 

[0408] (7) Obtain the user machine authentication server 1030 which obtained from the 
received-data verification user machine 1020 in encryption contents key data (user 
machine) and an encryption contents key, or **, and received the demand (drawing 14 
(c)) in an encryption contents key or **, and it performs verification processing of a 
demand. This verification processing is the same processing as drawing 75 explained 
previously and the processing flow of drawing 76, and is processing which also 
performs an attribute check collectively. In this case, processing is stopped when the 
attribute of a public key certificate or an attribute certificate is not a user machine. 
[0409] (8) Obtain in an encryption contents key or **, in processing, next the user 
machine authentication server 1030, obtain in the key or ** of KpDAS(Kc) ->Kc->KpDEV 
(Kc), and perform processing. 

[0410] (9) Encryption contents data transmission, next the user machine authentication 
server 1030 transmit encryption contents key data (DAS) to the shop server 1010. The 
configuration of encryption contents key data (DAS) is a configuration shown in drawing 
1 7 (d) explained previously. 

[041 1] (10) The shop server 1010 which received encryption contents key data (DAS) 
(drawing 17 (d)) from the received-data verification user machine authentication server 
1030 performs verification processing of encryption contents key data (DAS). This 
verification processing is the same processing as drawing 75 explained previously and 
the processing flow of drawing 76, and it is collectively performed by attribute check. In 
this case, processing is stopped when the attribute of a public key certificate or an 
attribute certificate is not a user machine authentication server (service management 
object). 

[0412] (11) Encryption contents key requested data transmission, next the user machine 
1020 transmit encryption contents key requested data to a shop server. The 
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configuration of encryption contents key requested data is as being shown in drawing 
17(e). 

[0413] (12) Verification processing and the shop server 1010 which received (13) 
accounting encryption contents key requested data from the user machine perform 
verification processing of encryption contents key requested data. This is the same 
processing as drawing 75 explained previously and the processing flow of drawing 76, 
and is processing which also performs an attribute check collectively. In this case, 
processing is stopped when the attribute of a public key certificate or an attribute 
certificate is not a user machine. If data verification ends, the shop server 1010 will 
perform accounting about dealings of contents. 

[0414] (14) After the accounting in the encryption contents key data 2 (shop) 
transmitting shop server 1010 is completed, the shop server 1010 transmits the 
encryption contents key data 2 (shop) to the user machine 1020. The configuration of 
the encryption contents key data 2 (shop) is as being shown in drawing 17 (f) explained 
previously. 

[0415] (15) From the received-data verification (16) preservation processing shop server 
1010, the user machine 1020 which received the encryption contents key data 2 (shop) 
performs verification processing of the encryption contents key data 2 (shop). This 
verification processing is the same processing as drawing 75 explained previously and 
the processing flow of drawing 76, and is processing which also performs an attribute 
check collectively. In this case, processing is stopped when the attribute of a public key 
certificate or an attribute certificate is not a shop. If data verification ends, the user 
machine 1020 decodes encryption contents key:KpDEV (Kc) enciphered by the 
preservation processing KpDEV of contents, i.e., a self public key, using the self private 
key KsDEV, further, it will encipher using the preservation key Ksto of a user machine, 
and it will generate encryption contents key:Ksto (Kc), and will perform processing 
which stores this in the storage means of the user machine 1020. 
[0416] Thus, in the processing shown in drawing 74, in the signature verification of data 
which did not perform an attribute check but received at the time of mutual recognition, 
since it considered as the configuration which performs processing which checks an 
attribute, processing is simplified and the increase in efficiency of the processing 
accompanying contents dealings is attained. 

[0417] In addition, although the example which applied the attribute check by the 
attribute data mentioned above explained the configuration which obtains in a key or ** 
and performs processing in the sen/ice management object, it is possible to apply 
attribute check processing also in the configuration which applied the above-mentioned 
log collection server, for example. In addition, an attribute is set up based on the 
function characterized to each entity between the entities which perform general data 
transmission and reception, and it becomes possible to raise the safety of data 
communication, and security further by storing the set-up attribute in a public key 
certificate or an attribute certificate, and performing attribute check processing of a 
communications partner using these certificates. Moreover, since it combines with the 
conventional mutual recognition processing and signature verification processing and 
attribute check processing can be performed, it is [ data communication / usual / 
perform / perform only signature verification or mutual recognition and / if needed / 
attribute check processing ] alternatively possible in signature verification processing, 
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mutual recognition processing, attribute check processing, or combining and performing 
according to a security degree. 

[0418] As mentioned above, it has explained in detail about this invention, referring to a 
specific example. However, it is obvious that this contractor can accomplish correction 
and substitution of this example in the range which does not deviate from the summary 
of this invention. That is, with the gestalt of instantiation, this invention has been 
indicated and it should not be interpreted restrictively. In order to judge the summary of 
this invention, the column of the claim indicated at the beginning should be taken into 
consideration. 
[0419] 

[Effect of the Invention] Since it considered as the configuration whose shop server 
which receives the purchase demand of contents sends the encryption contents key 
made into the mode in which decode with the storing key of a user machine is possible 
the condition [ the accounting to the contents purchase demand of a user machine 
having been completed ] to a user machine according to the contents distribution 
system and the contents distribution approach of this invention as having mentioned 
above, the positive accounting accompanying the purchase of contents becomes 
possible. 

[0420] Furthermore, according to the contents distribution system and the contents 
distribution approach of this invention It is based on a contents purchase demand from 
a user machine. Since processing which relocks [ which was enciphered with the public 
key of a user machine authentication server (DAS) / contents / KpDAS ] the contents 
key KpDEV (Kc) enciphered with the public key KpDEV of a user machine (Kc) was 
considered as the configuration which the user machine authentication server which 
manages contents distribution performs It enables a user machine authentication server 
to grasp the contents dealings between a shop and a user machine certainly. 
[0421] Furthermore, according to the contents distribution system and the contents 
distribution approach of this invention, by the data communication performed between a 
user machine, a shop, and a user machine authentication server, since it considered as 
mutual recognition processing or signature generation, and the configuration of 
verification processing that performs either at least, the security of data communication 
and the check of a data alteration are attained. 
DESCRIPTION OF DRAWINGS 
[Brief Description of the Drawings] 

[Drawing 11 It is drawing explaining the system outline and contents message 
distribution processing of a contents distribution system of this invention. 
fDrawing 21 It is drawing showing the configuration of the shop server in the contents 
distribution system of this invention. 

[Drawing 31 It is drawing showing the configuration of the purchase management 
database of the shop server in the contents distribution system of this invention. 
fDrawing 41 It is drawing showing the control means configuration of the shop server in 
the contents distribution system of this invention. 

[Drawing 51 It is drawing showing the configuration of the user machine authentication 
server in the contents distribution system of this invention. 
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[Drawing 61 It is drawing showing the configuration of the license management database 
of the user machine authentication server in the contents distribution system of this 
invention. 

rDrawinq 71 It is drawing showing the configuration of the user machine in the contents 
distribution system of this invention. 

[Drawing 81 It is drawing showing the purchase management database configuration of 
the user machine in the contents distribution system of this invention. 
[Drawing 91 It is drawing showing the public key certificate distribution configuration in 
the contents distribution system of this invention. 

[Drawing 101 It is drawing which explains applicable signature generation processing in 
the contents distribution system of this invention. 

[Drawing 111 It is drawing which explains applicable signature verification processing in 
the contents distribution system of this invention. 

[Drawing 12] It is drawing which explains applicable mutual recognition (symmetry key 

method) processing in the contents distribution system of this invention. 

[Drawing 131 It is drawing which explains applicable mutual recognition (unsymmetrical 

key method) processing in the contents distribution system of this invention. 

[Drawing 141 It is drawing explaining the data configuration which communicates 

between each entity in the contents distribution system of this invention. 

[Drawing 1 51 It is drawing which explains applicable data verification processing in the 

contents distribution system of this invention. 

[Drawing 161 They are the key or ** performed in the contents distribution system of this 

invention, or drawing which obtains and explains processing. 

[Drawing 171 It is drawing explaining the data configuration which communicates 

between each entity in the contents distribution system of this invention. 

[Drawing 18] It is drawing explaining the data configuration which communicates 

between each entity in the contents distribution system of this invention. 

[Drawing 191 It is drawing explaining the contents key preservation processing 

performed in the contents distribution system of this invention. 

[Drawing 201 It is drawing explaining status changes of the shop server in the contents 

distribution system of this invention. 

[Drawing 211 It is drawing explaining status changes of the user machine in the contents 
distribution system of this invention. 

[Drawing 221 It is drawing explaining status changes of the user machine authentication 
server in the contents distribution system of this invention. 

[Drawing 231 It is drawing showing the processing flow between the shop server in the 
contents distribution system of this invention, and a user machine (the 1). 
[Drawing 241 It is drawing showing the processing flow between the shop server in the 
contents distribution system of this invention, and a user machine (the 2). 
[Drawing 251 It is drawing showing the processing flow between the user machine 
authentication server in the contents distribution system of this invention, and a user 
machine. 

[Drawing 261 It is drawing showing the processing flow between the user machine 
authentication server in the contents distribution system of this invention, and a shop 
server. 
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f Drawing 271 It is drawing showing the processing flow between the shop server in the 

contents distribution system of this invention, and a user machine (the 1). 

[Drawing 281 It is drawing showing the processing flow between the shop server in the 

contents distribution system of this invention, and a user machine (the 2). 

[Drawing 291 It is drawing explaining the contents message distribution processing using 

the distribution server as a modification of the contents distribution system of this 

invention. 

[Drawing 301 It is drawing explaining the contents message distribution processing using 
the distribution server as a modification of the contents distribution system of this 
invention. 

[Drawing 311 It is drawing explaining the contents message distribution processing of 

the modification of the contents distribution system of this invention. 

[Drawing 321 It is drawing explaining the data configuration which communicates 

between each entity in the contents distribution system of this invention. 

[Drawing 331 It is drawing explaining the data configuration which communicates 

between each entity in the contents distribution system of this invention. 

[Drawing 341 It is drawing explaining the data configuration which communicates 

between each entity in the contents distribution system of this invention. 

[Drawing 351 It is drawing explaining contents message distribution processing without 

mutual recognition of the contents distribution system of this invention. 

[Drawing 361 It is drawing explaining the modification of contents message distribution 

processing without mutual recognition of the contents distribution system of this 

invention. 

[Drawing 371 It is drawing explaining the contents message distribution processing 
which applied the electronic ticket in the contents distribution system of this invention. 
[Drawing 381 It is drawing explaining the configuration of the ticket issue server of the 
contents distribution system of this invention. 

[Drawing 391 It is drawing explaining the ticket issue management database 
configuration of the ticket issue server of the contents distribution system of this 
invention. 

[Drawing 401 It is drawing explaining the purchase management database configuration 

of the user machine of the contents distribution system of this invention. 

[Drawing 411 It is drawing explaining the license management database configuration of 

the user machine authentication server of the contents distribution system of this 

invention. 

[Drawing 421 It is drawing explaining the configuration of the distribution server of the 
contents distribution system of this invention. 

[Drawing 43] It is drawing explaining the distribution management database 
configuration of the distribution server of the contents distribution system of this 
invention. 

[Drawing 441 It is drawing explaining the configuration of the ticket liquidation server of 
the contents distribution system of this invention. 

[Drawing 451 It is drawing explaining the ticket liquidation management database 
configuration of the ticket liquidation server of the contents distribution system of this 
invention. 
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[Drawing 461 It is drawing explaining the data configuration which communicates 
between each entity in the contents distribution system of this invention. 
[Drawing 471 It is drawing explaining the data configuration which communicates 
between each entity in the contents distribution system of this invention. 
[Drawing 481 It is drawing explaining status changes of the ticket issue server in the 
contents distribution system of this invention. 

[Drawing 491 It is drawing explaining status changes of the user machine authentication 
server in the contents distribution system of this invention. 

[Drawing 501 It is drawing explaining status changes of the distribution server in the 
contents distribution system of this invention. 

[Drawing 511 It is drawing explaining status changes of the user machine in the contents 
distribution system of this invention. 

[Drawing 521 It is drawing explaining status changes of the ticket liquidation server in the 
contents distribution system of this invention. 

[Drawing 531 It is drawing explaining the example of the contents message distribution 
processing which applied the electronic ticket in the contents distribution system of this 
invention. 

[Drawing 541 It is drawing explaining the contents message distribution processing 
which applied the log collection server in the contents distribution system of this 
invention. 

[Drawing 551 It is drawing explaining the example of a configuration of the purchase log 
in the contents distribution system of this invention. 

[Drawing 561 It is drawing showing the configuration of the log collection server in the 
contents distribution system of this invention. 

[Drawing 571 It is the flow Fig. (the 1) showing processing between shop servers with 

the user machine in the contents distribution system of this invention. 

[Drawing 581 It is the flow Fig. (the 2) showing processing between shop servers with 

the user machine in the contents distribution system of this invention. 

[Drawing 591 It is drawing showing the example of a format of purchase requested data 

and selling check data in the contents distribution system of this invention. 

[Drawing 601 It is drawing in which setting and wearing to the contents distribution 

system of this invention, or showing a **** alteration check value (ICV) generation 

processing configuration. 

[Drawing 611 It is the flow Fig. (the 1) showing processing between log collection 
servers with the user machine in the contents distribution system of this invention. 
[Drawing 621 It is the flow Fig. (the 2) showing processing between log collection 
servers with the user machine in the contents distribution system of this invention. 
[Drawing 631 It is the flow Fig. showing processing between log collection servers with 
the content provider in the contents distribution system of this invention. 
[Drawing 641 It is the flow Fig. showing processing between the shop server in the 
contents distribution system of this invention, and a log collection server. 
[Drawing 651 It is the flow Fig. showing processing between the shop server in the 
contents distribution system of this invention, and a log collection server. 
[Drawing 661 It is drawing explaining the attribute information applied in the contents 
distribution system of this invention. 
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[Drawing 671 It is drawing showing the public key certificate configuration which has 
applicable attribute information in the contents distribution system of this invention. 
[Drawing 681 It is drawing showing an applicable public key certificate and an applicable 
attribute certificate configuration in the contents distribution system of this invention. 
fDrawinq 691 It is drawing explaining new issue processing of the public key certificate in 
the contents distribution system of this invention. 

[Drawing 701 It is drawing explaining an update process of the public key certificate in 
the contents distribution system of this invention. 

[Drawing 711 It is drawing explaining new issue processing of the attribute certificate in 
the contents distribution system of this invention. 

[Drawing 721 It is drawing explaining the contents message distribution processing 

accompanied by the attribute check in the contents distribution system of this invention. 

[Drawing 73] It is a flow Fig. explaining the mutual recognition processing accompanied 

by the attribute check in the contents distribution system of this invention. 

[Drawing 741 It is drawing explaining the contents message distribution processing 

accompanied by the attribute check in the contents distribution system of this invention. 

[Drawing 75] It is a flow Fig. explaining the data verification processing accompanied by 

the attribute check in the contents distribution system of this invention. 

[Drawing 761 It is a flow Fig. explaining the data verification processing accompanied by 

the attribute check in the contents distribution system of this invention. 

[Description of Notations] 

1 00 Shop Server 

1 1 0 Contents Database 

120 Purchase Management Database 

130 Control Means 

131 Control Section 

132 ROM 

1 33 RAM 

1 34 Display 

135 Input Section 

136 HDD 

137 Drive 

138 Network Interface 
200 User Machine 

220 Purchase Management Database 
230 Control Means 

300 User Machine Authentication Server 
320 License Management Database 
330 Control Means 
400 Distribution Server 
41 0 Contents Database 
610 Ticket Issue Server 

612 Purchase Management Database 

613 Control Means 
620 User Machine 

630 User Machine Authentication Server 
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640 Distribution Server 

642 Distribution Management Database 

643 Control Means 

644 Contents Database 

650 Ticket Liquidation Server 

652 Ticket Liquidation Management Database 

653 Control Means 

801 Ticket Issue Object 

802 User Machine 

803 License Holder 

804 Contents Maker 

805 Bank 

901 Shop Server 

902 User Machine 

903 Log Collection Server 

904 Authoring Server 

905 Content Provider 

9031 Log Management Database 

9032 Control Means 
1010 Shop Server 
1020 User Machine 

1 030 Service Management Object 
1040 Public Key Certificate Issue Station 
1 050 Attribute Certificate Issue Station 
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tt*#^r*fti«*{b3>f- yysi^e., toisa— »f« 

§§©1§»a(c «t 5 «^pIfil*Hg^{b3 yf y ytt^Hft 

"r*«*Htfr*ara**ff , rs^'r'y7 , i:, May 3 ? 

/ *3 ^ T Mffia— tf TOc «fc S n y f y y P A 

\c m-3 < ffl^ jaaft^r Litct tt&ft tbr. mib^- 

-^««l^^-/W±jaLfca-if«HS©tt««K:J: 
t> ffi#Rr&&Hg*§{fc3 yf y y Sl^tfflBy 3 -y 7tf-/< 

*>5SWea— !f«ggte««-rsxf -yyi:, ^Wf^c 
fc*«rfti:-rS3yfyyEfll^ratfea. 
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[0 0 2 9] S&lC, #^0J3©3>xyyIB#73?£<D- 

(DAS) <D»raaKpDAST?B&#fb«nfeB&#{t 
nyfyyiKpDAS (Kc) T&tK MISa— »f$S 
SKBE-9— (DAS) (DmTrtzmfrVfrX.Wmit, 
tUIBBg^bay-ryyaKpDAS ( K c ) £MI5 a- 
IflMIBKl*--^ (DAS) (DW%MK s D A S 

(D E V) QftffittK p D E Vt:-Wfg#{fcLTBg#{fc3 
Vf^yiKpDEV (Kc) *&&+ZimV2>&C 

[0030] se^c *awo3yfyyEflwa©- 

*8HftKfc*v>T, MIBa— }TWBWS9— MIS 
a— tf«Mgfr&, M!Ba— tf'McD^«THi^^Bl 

Ka— vmmv>miMK.x owvsm***Mkx>?-v 

[0 0 3 1] £S>K, *56WO=iy-fyyE^J*<t)- 
**«ifc*^T, SSflBa— »f«»BBE-if-/^i, WIS 

BS#{k3>-ry 4 y«*«flB^3 y^it- U M 

[0 0 3 2] SF>K, *Jffl03yry , yE»5fSO- 
*«IB«fc*^T, fflKa-ifaHtf&au WES/ a 

its s*f*-^ssfliftT*s -> 3 y -/(Dmm^t LTV 

LTOnyfy-y I D^Wf S££:Uca— !f*8g§<DS 
?»**^tr"r-* t LT^fiSc^n, MISS'S y 7^- 

"T % c 4: tc i t> -7*- * att*»*f- 1 <y * f 5 i: £: 1 
[0 0 3 3] *%W03>T->"ViB#*ft©— 

HaSfS!B«Jc*v>T, MfBa— (f^ME?-'*!** MIS 



[0 0 3 4] Z<bic s *%W©^6©ffliJStis nyfy 
y»DRMia3*=i • S'XxA±T?H?T-eL 

WT^ot, MfBsytfa-* • /o^Aii, 3 
yfWEI*fIt5a- y«HBBHE"9— (DA 

s) <D£f£?z3.-vm<Dm/imic£*)mmmm 

%it=iyTyymtt%m?%X7-v7t, MiHa— «fi 

5Xf7^t, ffflSBH&^®£7**#fcLT\ MIS 
a— tfMcflLT, a-lfi««€)tttt||t±t)«#Rl 

[0 0 3 5] ft*, *&W<Dt&G<D®miC&Z7vV7 
l*ffltm»lt* «l4ft:/n^A- 3-K£H 

frnlfilftiHffln^lia-* • ^fACSttLT, 3ytf 
a-* • 7W^A£3yif a-2T^ftJfc£T-»f 
5jdM*-e*S. ttWd:, CD^FD, M0ftif£>I3Si!& 
{*, fc5W4, *-y h7-*ft£<oe2£J«{*ft£, 

«ffia«ffciss*nfti/^ 

[0 0 3 6] c©J:3ft:/ny9AJI{ft»f*t;J\ nyi; 

[0 0 3 7] *aWO«6tfl!!©iW, «W-f»5pJjiR«s 

SBfi , r**«w<!!)*sfiw j f»»w i rsHffiE»r3< .top 

[0 0 3 8] 

«Oft«©««H:ov>TPIfflfc|»H-r*. ft S3, ttft 

iXT©sstc^^Tfffta 0 

i . ^it^yf-yymnmt^ft^^m^^^^yf- 
yymm'gm 

i . i . -yxTAM : S*3 yf yygSM ^e^i/ 1 
i. 2. S^nyf^ylltf^liO^i 

i. 3. m^yy-yyMS^f^z 

[0 0 3 9] 
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KiSayf-yyBBflWl] 
[i. i. yx-ri^fig : S*3yT-y , y@Sfi ; &T r ;i' 

1] 0 nc^fgtE^yxyyffifiyxxAfciU^y 

[0 0 4 0] aicn^fvyEi^fAii, a.— if 
$fg*c*tf 53yxy\yc>£fI-9-- tfxfcfrftdya y 

7+)"-^ (SHOP) 10 0, 
&<03yT-yyE#*3*«**:i-1flMi (DEVIC 

E) 200, ^etc, ES*3yryywt)3ltflfS* 

ftft 5SaD— At l/T«l»r*3.-1f«»BE*-/< 

(D A S : Device Authentication Server) 3 0 0%± 
ffll&nmttZo ft&\ B 1 ~>3-y7 B tr- 
/U00, 3.— »ffllS2 0(K a-tfWHBiW--^ 3 

0 o* i -D-3~D7jiLT^%t)\ MI&vayTyyqwm 

zmmas^rit. m 1 izm&Mfmmmmm 

U 43>fyyaO?IS»C, fi&4ft;l/-F-T*1P8tf 

[004 i] 0 1 c^yfyyffifl 

yXx A«Dy a -y 7tr- ^ 1 0 0 ©*gf££0 2 tc^"f „ 
->3 7^-/qoo(t SXDljIfttftfcft^yfy 

v £ 3 y f y y tb| k 1 Bf#ft 31 y r y y r— 

^t'WKc (Content) nyr^-K 
c £a-lf WffiWMV—'^ (DAS : Device Authentic 
at ion Server) ©&gfl8t : K p D A S •pBf#'fktfcB|# 
ftny-ry^^-K pDA S (K c) £f&*fll/fc3yf 

yyf-^^-x 1 1 o*#rs. ft&, Hg^fcny-r 

yyf-^T'feSK c (Content) 1 0fCfc^ 

1 D^wmstu avfyy 1 DKS^^THgijRr^a 

[0042] ->a 1 0 o*i, Jf.tcnyfy 

t-SBIHea-r-^-X 1 2 0 5:S«. £P>tc, n 

yfyyf-^^-x 1 1 ofrSoSEdnyryyott 

aisaa, sst^it tc#^pssar-^^-7, 1 2 ok 
200. a-if««KSEif--/<3 0 0 ^oinfaaa, 2? 

3»¥©i 3 o^wt^o 

[0 0 4 3] MKHa-r-^-X i 2 0©r-^M 

£0 3 ic^fo lisea-r-^-x i2oa, ->3 7 
7it -/ w n y r y y m. t> 3 1 t tc /s i; rsaafcHfrr s 

o. , ^yTyymxtimttffiiLfcz.— m&vm\ 



5 n y-ryy^ 9 3 1 ^IffiBiJ? i: LT© h 7 yif i'-y 3 y 
ID, mD^ltW^ny-ry-ytDliSiJ^TfeSnyxy 
y I D, -ya 7^-^ttit53yf/"yS!5?ltiil! 

aoxx-^x^-rx-r-^x^'it^^Oo Xr 

[0 04 4] $iJiP¥Ig 1 3 0*i, 02 K7T<f & o (CRI9 
&a?©, affiJfLa¥©i:LT(D^tgtWL, «JtP#S 

1 3 oa, wi^-tfBf^a^ny^i*, jiitsaayay 
o w^mmw^wmmT 1 -* t t-m, y 

3 y T^-z^iM : K s S H 0 P , y a y 
O^M«SEW«Ce r t_SH0P, ftBMMiEHIFaft 

ffMT**^IB«ttWWfiffJBfcl/TOBIiE» (C 
A : Certificate Authority) (D'AMMK p C A#$> 

[0045] 04 Kmm^m 1 3 0 ©iwj^t 0 m 
en^ai 3 oafcfiWco^TWE-rso sfiiMi 3 1 « 
^ffljaa^a^vA^nffrs't'^gjaasfi ccp 

U '.Central Processing Unit) {C4-pT$J#$n, 04 
<DSiJffl)#©©#^M©^a^JiI-ri.= ROM (Re 
ad only Memory) 1 3 2ti, I P L (Initial Program 
Loading) W><D7u ?yJ*%tRtiHLtt**:V U&5 0 R 
AM (Random Access Memory) 1 3 3fi, fflWbl 3 1 
tfUfTf^py^A, 0iJx.fcfT-:5^-X i jfa7P7* 

[0 0 4 6] a^g(5 1 3 4 ti, ffi B B B ^S®, CRTS 

7*oy7AI!W<Df-^> mtUiziyf-y vWM9t<0 
3.-^7— ?m*Wrs?% 0 KtiUl 3 5*4, 

K^, 0ij^a*v77.ii(D^-ry7 i -<y^f f /W7>^ 

^MUl 3 nctB^-TSo HDD (Hard Disk Driv 
e) 1 3 6*4, x-^-XSaTW^A, BgWi 
IfT'o^AfOT'n^A, «6*c* 

[0 0 4 7] K7y7l3 7ti, ^IJAtfHD (Hard D is 
k) ^, FD (Floppy Disk) HO^-r -r 7. 4\ CD- 
ROM (Compact Disk ROM) SifO^f-C Xi' , 
^Xi'^IIf^Xi', ROM^y'r^a^t 1 ) 
ft if W9£M * 'J ^©#fflf3«i#K: fctf S 7 ^ -bX 
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MU »&*^Lfc«DYy*7x-X<tLT«t£-f 

[0 0 4 8] y/^-zq o ofi, 0!l*.fcf±ifiLfe 
^^oMffl)¥ISi 3 ocfcvc, nyfyyoHO 
§IS*toT*»Sa-lf«§§2 0 0, fc*W4a-lf«MB 
BlEif— /<5 3 0 0 i:«OWe<D3^ry^D?lf t#5 

[0 0 4 9] (a-tf«»fiffi-9--/<) 0 5 tea— V® 

sBSE-y--^ (das) 30 o a— »r« 

r^y$t)3ltB#fca— tfWMMEtf- (das) © 

*«ffLfc3.-if««©IKSiJ?t?feS*»I D, nyr 
> 7 K 0 5 1 * *^ff 1 5 BSEic , a— *f «H»T^a»ff t 
5 3 y f- > y t) § 1 1 MSS'J? 1 1 T (O h 5 ^ if * "> 3 V 

id, m.K>^M^y ; ryy<om%^X'^^yy-y 

V I D, nyxy^^O^lt^Uff-TS^H >y7°-9--/^ 
©H»J? T- fe5->3'^ID, i/ a *y 7<D8ff? Sis a 

«»BiEU--/* (DAS) tfe»t53y'ryy«{»)5l# 

r- * x « , ftSTPfftntc mmtztpxyy-yvtomv 

[0 0 50] a— tfHffiBffil?— ^ (DAS) 300 
tt, a— *f$g§2 0 0, fa <y7^-/S 1 0 0 tOli 

znnT%%m^®3 3 o%wr§o »^iS3 3 0 

14, ^fcWWbfc'>3*y^-/^ofliflt|i#ai:Hl*, 
#S{c-tr*a7lc^?nr^5o a— fa^BSE*- 

^ (DAS) 3 0 0 ft<16W-r SBg^SSOBgflWttJifflT 

— £ i: LTHu a— »f«SBIE1f-^ (DAS) 

81 : K s D A S , a— «f««BK-9— (DAS) ©& 

BBaWEBI«C e r t D A S , ftfflgS9J«®%ffiIll 

•p*5»B8»iEW«fiKTJai:bT©BfiE^ (CA : Cert 
ificate Authority) ©2HP8SIK p C Atf£5. 
[0 0 5 1] (a— if «») H 7 fca— tfHffl 2 0 0© 
I)S*wt, a— mffii, uvrvyoMMS&fi 

-X2 2 0£Df-^«a8tit„ »AWIt-* 
^-Xti, ayf-WflRt)^!***^*^ a— ^ 



h 5 >1f * ->ayiD, & 0 § l**f*3 yfyyO«IS>J 

3i/a-y7°1f-^©§jSy?T'&3>'a>y7*I D, a— >f 
$§§ K § a y -f y v m <o % I £ iMox r- £ x 

-rxr-*x<D&if$g, se>fc a-TOs<D«§§»Bij 

[0 0 5 2] a-+f*$§§2 0 0«, fsy^-;< 1 0 
0, a— if «»B8Eif-/< 3 0 0 4: ©fflflMMI, 

»?©2 3 0*Wt5. »#I32 3 0W\ fttcaitH 

7t«l»*nTV^S„ a— tf»»2 0 0^«iW"r5Bir^ 

SI : K s D E V, a— lf«»O^BB«iEfl#C e r t_ 
D E V, &MflME^*<0»fr«HT%«&MmiEK*» 
ff^iltTOBliE^ (C A : Certificate Authority) 
©4>HiaK p C A, 3>f-:/y*a-if««©0!|*.tf^ 
- Ff-f X^^Of3tl#St^-r5IS50Bg#fbSI4: L 
TmfttZ&ftmK s t oA^feSo 

[0053] [^mmmmi ±ib^ a -y y^-/ ^ c s 

HOP) 1 0 0, a— tf^S (DEVICE) 2 0 0, 
a— tflSgiBfiElf— (DAS : Device Authenticatio 
n Server) 3 0 0 (DUE? Steffi ffl&ffl&K.'O^TBB 

[0054] temmmtm. temm*m^itim7 ! - 

1 (C A : Certificate Authority) fcWILfc&OT* 
SSo ^MaBEW#07*-vy KO«W*H9 (a) 

[0 0 5 5] /"i-^'ay (version) li, 

7;l/7^>/^ (Serial Number) TfeO, ^FJ®SEK#SI 
ffS (CA) KZvTWZStlZteffiffltiEmWOi'VT 
/l/-f **7;l/druXAiWm 7;PrfyX 

A/^v/— ^ (Signature algorithm Identifier algor 
ithm parameter) tt, ^SITO«©S^7;l/d r '; XA 

«*7;l'dru XAi UTtt, «P3fl»f^fc-J;cf R S A 

^ & £ tf&gtfiai r s a as * nx v ^ s «^ 
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©»fr#» t%t>*>&msmm9%fim (ca) <d%m 

■tfffi!ft\vSfflZl&&. (Distinguished Name) TtrnZftZ 
7-r-;l/K"P*S. timmiD^mm^ alidity) « > fiE 

§c ^w»ttEW«o*uffl#* (i d) a % a— tre&s 

ffl#&H8fS (subject Public Key Info algorithm subj 
ect Public key) it, a-tf©&HM1f fBfc LT<DSI7 

MKfEKfffffrA (CA) ©4MB«*fflv»T«IE*ffft 

-So 

[0 0 5 6] &BH»»^££*fl§^fcW?»*©£fiJW 

j£fcov>T, Bi o^rfflv^TifiH^-r^o hi ot^-rja 

Ste, EC-DSA ( (Elliptic Curve Digital Signa 
tureAlgorithm) , IEEE P1363/D3) fcfflVfclTPgST 

-^o^sas7o-T-*?. 0 a*, cc-ptt^Buaw 

^i: LTHRffilflBg^ (Elliptic Curve Cryptography 
Affg-Sf ( (Rivest, Shamir, Adleman) ft if (ANSI X9.3 

1) ) fcfflt^scfcfcprai-efc*,, 

[0 0 5 7] EI 1 0 0§7-r-y7tCOV^TlfiB^-ri>o 7 
f'^S lKfc^T, p£$S», a, b&ttP3l8llil<?)<$ft 

OHSRfllfc : 4a3+27b2*0 (mod p) , G£ 
WRfflH^O^-XiJ^yK r*GOffijR, K s 

(0<K s< r) fc-fSo 7r-y7S 2*^T, ^ 
<y Hz - :>* M ©/ \ <y a iP&ff S b , f =Hash (M) k.T2>o 

[0 0 5 8] LLt, /vyi/a|||gfc£J8V>T/vy$<'affi 

{*, MD4, MD 5, S HA- 1 ft£tfffl^5tt5i§-& 

tssu DEs-cBc*m^6n**-&fe*s. c 

Oii^tt, *KFtti2rtIi:ftSMAC (f-x-y^fi: IC 
VtCfg^-f £>) *V>.yi/a.ffitft5o 

[00 5 9] WHIT. 7r«y 7S 3 T?, SU&u (0<u 
<r) *&RU 7x-y7S 4T'^-X#-l'y h^rufg 
bfc^V (Xv, Yv) fcltg-fSo ft*3, tfPaftH 



[0 0 6 0] 

GRl]P=(Xa. Ya),Q=(Xb, Yb),R=(Xc,Y 

c)=P+Qi:-T§i:, P^QcDBf OtaJI) , 

Xc = A2-X a-X b 
Yc = Ax(Xa-Xc)-Ya 
A=(Yb-Ya)/(Xb-Xa) 
P=Q©B# (2{gg) , 
X c = A2-2 X a 
Y c = A x(X a-X c)-Y a 
A=(3(Xa)2+a)/(2Ya) 
[0 0 6 1] Cft6£ffl^T£G<0u«*trjrr« (5i 

KfT9o G, 2 x G , 4 x G • -*frgU u£2£ft£ 
raLTl!bV£oT^3fcC3fcttJS'r52 1 xG (G£i 
02^BL/£fii ( i it u to I S Bfr6»*.fcB3©ey h 

mm ) **ns-r*. 

[0 0 6 2] Xr77S5t« c=Xvmod r *fr 
IU 7f97S 6T*C<Dffitf OtCftSfrif SfrfiJJg 
L, 0T-fttttU£7x-y7S 7T'd= [(f + cKs) 
/u] mod r£ft®U 7r>y7S 87?d tfOT^ 
3frif5frW£U dtfOTftCtfttf, Xf7yS91? 
cfc<fctfd*m?#&r-*fcLTttl2j-f5o r 

r-*fi3 2 0 If -y hftitftSo 
[0 0 6 3] 7-r-y7S 6£33^T, ctfOT&oftif 

[0 0 6 4] £fc, &IB»8##5£*ffl^fcW?»&© 
Ell 1 fcffi^TiUWr*. 7r-y7S 1 1 
T\ M**yfe-5>, p*«J», a, b£ttP}ttli®ftft 

(«P3ft^: y2= x 3+ax + b) , G ^rHP3ffl$S!±£0 
^-X^yt-, r^rG (D{uS(, G 43 «fc If K s X G£&H 
ft (0<Ks<r) hf^o 7r-y7S 1 2Tm?S« 
x-^c*d;t>'d^0<c<r. 0 < d < r %ffitctfr 
fflEt&o CftZmzLT^rcm^ 7r>y7S 1 3 
T\ ^^yHz-^MCiM-yiyafl^ltSU, f=Hash 

(M) t-TSo Xf7^S 1 4Th=l/d mod r^: 
ftgL, 7r-y7S 1 5Th l = f h mod r, h 
2 = ch mod r ^rftWt*-S 0 

[0 0 6 5] 7x-y7S 1 6Efc^T, gc^fhgLfch 

HSitfh 2*fflV\ ^P= (Xp, Yp) =hlxG 
+ h 2 • K s x G^f+»-T?.o «7#*^E#li, 4>M 
SlGfeJ;t/K s xG^oT^SOT, §10OXT7 

7S 4 fcra«te«Rft«Lh©jSOX3!;5-ft©tHlt*^ 
t5. ^LT, Xx-y7S 1 7 P ^ WSS^*> if 5 

*>«u «Hawa-p*ttn«^f-y7's 1 8(cjffit? 
mmat> mRM&coymtxT-y/s 1 6-e?*t 

US^o 0*0, P= (X, Y) , Q= (X, -Y) (0 
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zctmmbr^z) . ^fyysis-pxp mo 

[0 0 6 6] m?g£tfIEU^fiJ££ftfcl§-B\ x- 

[0 0 6 7] Xr'^S 1 2&£fc^T, H?S£ir-* 
c$fc(;idft\ 0<c<r, 0 < d < r £$tfc££fro 
Xt7^S 2 0fcJtty 0 Xx^T'S 1 7 

0fCjtt? o ZtblCgfc. Xf7^S 1 8tCi3l/>T, Xp 
mod r (Omti\ % : ?m%T-$ c £-gcLT^&fr 

ofcif^CtX-r'y7'S 2 Otitic 
[0 0 6 8] 2 OfCfcl^Tx Ifi^^EL 

[0069] temmtiwmciz. ffim<Dm&tf%;-£ 

~D-3V% 0 09 (b) tfa-f«Citt?n5a-f 
«D4«iiEIE« :Cert_DEVT^O, a-+F 
I D a-1f$gg<7>kNlf§iK p D E V£*§iSflLT 
l/^o 09 (c) fi^a 7^-Atfti|fl$n?>^a >y 
^••y— ^cDi>P^®IP^# :Cert_SHOPT'$0 1 
i/ a v 7 I D fV— 'WAfflMK pSHOP 

£te*ftLTi^„ H9 (d) it3--*fwi%mm-'vc 

r t_DAST'&^ a— *f®^M.?-^ I Dt, a 
-1f'«|gg^ffiE-9— /<<D&IWttK p D A S Steffi LT<^ 
£, COi^c, a-+f$&gg, ->3 7^-/; a-+f 

[0070] [3yf>7lAM 3Wc, BUKiH 

ALTfy^t-saJiKc^TiBss-rSo 01 ©#*§ 

(I) *6 (20) <DHKt^a»f-rso 

^IBOSMlcfc^TftEBiEMJi ( (1) , (7), 

(II) ) $fT&?fct>4>*j£'<T^«tf, &gfcfSi; 

[0 0 7 1] (1) ffiSfgfiE 

nyfy7?:->37^-/q OOA^BSALctdfr 
5 a— «f «» 2 0 0 tt> *s 3 •> i: OP^T-fflHH 



[0072] nm®m^tt*m^rzm^%mfim*. 
mi z*m^T%m?%o mi z\z&^t. $mm& 5 % 

[0 0 7 3] BA*64lf<y F©aARb*±J« 

U Rb*itfiEOI DT*&5 I D (b) £Atcg{f 

a%4iU R a, R b, ID (b) ©lit, D E SO 
CBC*-KT?»Ka bSffl^Tf-^^BjHWbU B 

[0 0 7 4] cn*SMLfeBt4, gffix-^StK a 

bWWtr*. gfix-^Mbtf&ii. s-f, 

*§iE 1 £ltK a bX-mmtL, Sl&R a*f#& 0 % 
fc, B§^£E 2£tlK a bT«{bU E 1 

MK a bTflWfcU *<D*S3I£: E 2 £8fffiWl§!Sfn 
U I D(b)*f 5. c5LTf#P>ft7cRa, Rb, I 
D(b)©l*k RbfeJ:tfID(b)fi«, Btfjgffibfcfc© 

fc-a"r**»*E"r*. c©««EKjit>fc*&» b«a 

[0 0 7 5] ^tcBii, BK*»Cfi!ffl"r*"fey^3>ll 
(Session Key (J-XT> Kses fc-TS) ) 5 

Kses ©/lite, DESOCBC€:- Kf® K ab^ffl 

[0 0 7 6] cn^SMUfcAti, gflx-^^Ka 

b-p(g#{b-r*. Sfflr-^O^b^i*«, BOtt# 

5LT#e>nfcRb, Ra, Kses<D^ RbfciC/ 

Ra*\ A»^as<BLfcfeoi:-a-r*^ttttE"r*o ccd 

[0 0 7 7] a*. SMx-*OtftSE©l8t, ^ 

[0 0 7 8]*Il, ^MttS^SaSTf** 1 6 0 If <y h 
E C C fcfflVvtVStf, MiiEO J; 5 tCP^^SiBg^ 

^T'fentf^-fnT'fej;^„ sfe, n-9--rxfei6o 

hG£A k^Lf^A v = A k,XG^5)<J6, Ra, R 
b, Av (X&UfcYffiJg) CW-TStt^S^A. S i g 
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CT*. R a&itfR bli^-n^'ne 4 £>y K A VOX 

assifcYffie^n^ni 6 oif^ h-e&s© - ??, -s-tt- 

4 4 8 If >y Mc*f-f 3«?S££»T5„ 

[0079] '&Msmm9%*mt &Kucit* mmm& 
ttwumt z&mmmwwffiiJm (ca) a i o«d& 

n (ca) o^M^fiattTv^^ai^feSo 

[0 0 8 0] AOX&fflMMPn^ Ra, Rb, Av,l 
^»*A. S i g%§{gLfcBt4, Atf&fSL-Ttfc R 

fc ^lt, ixt)murc:A«^si^ffl^m?s«A. 

5 i gfctWBE-rSo *?««0tftIEfc:Jil&S!jbfc& BJ4 
A£El3&fe<Di: LTlgEEf 5 0 

[00 8 1]»C Bfi, «J»p±t)/jN«^SL»Bk* 

v=BkxGm Rb> Ra, Bv (XffigtYgg 

[0 0 8 2] B (D^mmmW. Rb, Ra, Bv, 1 
?SSB. S i g£§{iLfcA«u Btf&fiLTt/iR 
a#, Atf£.f&Lrct><D£-m.TZfrtfimt%o %<D1& 
JR. -*LTl^fc*HrtCtt, B(D^«iEB»rtcD1t? 
S**KSEMO»ra«-P«iSE U B D fcB 

S i g*tME1-S. *?»B©ttfjEfcJ5!JttLfc1& Ati 
B*jES&&<D£ LTHE-f 3 0 
[0 0 8 3] M#*^IEKbRSj L ftl^C t4> BliBk 
xAv (Bktta*f£^ A vtt*P3ftiftJ:0£"Cifc5 

U AttAkxB vftfWb, cne^oxji^Tfi 

(#ffl8tBg-if£ 6 4 tf<y htt£0A&B*3£ Lfti§ 
[0 0 8 4] «?»*0*MiE J f>5Mlf f -*0*IE0IBE 

[0 0 8 5] COiSfcfflSBMIKfc^T, 



[0 0 8 6] (2) h^yf^^ay I D, UtAS^r 

(3) mxm&f-z&M 

±&<Di/3 ytt-* 1 0 0 t^-ifWm2 0 0(S<Dtg 

SSgfiEAWr^i:, a— «f«»2 0 0tt* nyf>7 
©fjfAg*T-**£$-f£o »AB:R7*-*<D*l»a* 
014 (a) fc^fc WAg#7*-*«\ 3yr>y»f 
A©S*^T'fe^->3 7^-/^ l 0 0©H9J?T*S 

-1f««2 0 OOBt^a^g^J^im^fcS^^T 

ffl} A * #H f 5 3 y f v y © SRSfl? £ L T © a y r y y 

«8§©«*«**M*!insnT^s. f$AS#-f 

[0 0 8 7] (4) gfir-^lE 
014 (a) ^"TIBAS^r-^fta— lf««2 0 0 
fr5§Mbfc->3 1 0 0(4, Sfllr-^O* 

-^rifJODa— lf«88©^MttEEn*C ert_DEVO 
*MEE (S 5 1) ^7^3o cn(4MaiL/-cJ:9tc, 

«BEW»K^snsaffsi (ca) 0«£*fctjET5aa 

a (0 1 1 #JH) t LTUff «ti. afTS©»B8« : K 
p C A£jgffl LTIIIfT^nSo 

[0088] niiEtfo k, •rafe'fe^raaiEwiicas 

jb^V^WS (S52T*Yes) ZftZt, S 5 3tJl 
t?o WMOl^ (S5 2tNo) (i, S 5 7f 

^fUffltfcJaS^'t'i^nS. S5 3Tt4> ^MfiE^ 

»*»6a— vm^wAMm ■ k p d e vtfjfcomsn, 

Xf7 5 4 T&Mtt : K p D E V^fflV>fcPAS* 
r-*Oa-1f«ffl»2BOtt|jESKl (01 1#B8) *<H 
tT^n^o ttti^OK, -f&fr-5fi8AS#x-£<D&® 
tf4l/>fc«JE (S 5 5t?Y e s) S 5 6tCj§ 

*Sfli t- z % a y f- y v B as*x- ^ i»* s 

i:*US?n§o ttEtf#J«3i©»& (S 5 5TN o) 
tt, S 5 7t?I9AS*x-^*^^<3 tfij^^n, J E- 

[0 0 8 9] (5) Ht^knyxyyfc.tt/Bf^kny 
f>';if-? l (->H7 7') If 

3 v 1 0 0 Kfcl^T, H8AS*r-^O^IiE 
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yy '■ K c (content) i:, 3yf>7t-: Kc£a 
— tfaSKSE-9— /< (DAS) 3 0 0 ©&KJ«TRfHf{fc 
LfcBg^fb^yf-yySlx-? : KpDAS (Kc) t 

[0 0 9 0] Bg^fb^y-f y^aix-^ l (^a y^") 

<D«$£01 4 (b) fc^f„ Bg#{bnyry^Slr- 
*l (5/3 v 7) tt, 3>rV"y»!AOS*7C"PaBSa 
— 9*#W82 0 0OHBI?*e**a— *f«HH I D, BIAS 
(014 (a) ©a— lf«S^B8»SEIB*%» 

i/^fc-f-*) , uyy-y vWo?\ZKW^y ay 7V— 

/<l 0 0^fi)cLfci/3-y^SNo. , Bg^ffbny-r 
y7lf-^ : KpDAS (Kc) ££U cn&Or 
-^fcWT55/3 y^-zt 1 0 0 Ott?S€*M#n$ 
ntVSo Bg^fbny-ry^ll-r-^ 1 (S/g 

yf) i/ 3 y^-m 0 0 0£MttflEH*tf$ 

#$n, a— !f««2 0 0fc26#*n*. &*5s *yay 

[0091] (6) gmT-zmi 

i/a-v'fVr— >M 0 OfrZVgmt^yf-yy : Kc (co 
ntent) 4:, 0 1 4 (b) K.^.tf^mt^yf-y^Wr 
1 (5/3 -y7) *»|Lfca— !f«HB2 0 Oti, Bg 

■^fbnyf- yylf-^ l ($/a ©tMBas** 
a-£ll*8<z>iagr?£t), a— 9* 2 o o tt, 

mMBm<D#M&ffijm (ca) ©&hsik p c a^s 

V-zWiifflMK p S HO PfcfflVTS 1 4 (b) 

-f Hf ^{bn yf V^Str— * 1 (2/ 3 7^) (Di/ 3 >y 7 

[0 0 9 2] (7) tlSBSE 

a— tf®§§ 2 0 0 tf, 3 y 1 0 0 5>Bg^{b 

3yf>^:Kc (content) iiflg-SHbn i/T^SIx 
- £ 1 (.fay -f) £g{§ U Bg^{bn >7if- 
* 1 (^3 7 7') <D«lE&»*.5i:, a-lf«HS2 0 0 
tt, a-lfflMBBfiEtf- ^3 0 0 fc 7 *-fe*U a— if 
*»2 0 0i:, a-ifaMiBSE^-^sooiBKiB^T 

fflSBfeaa^fiR?^ co&ga* t^s©^^ 

•9— /< 1 0 0 fca— «fW»2 0 OIBOffiSBSEJaSfcW 

[0093] (8) B^lt^yfyyif-^ (a— 9* 
«§8) *5=fct/Bg^b=i>x>' < y8i*Ht^x.S^{l 
a— «f«8&2 0 0 i: a— 9* flWBKBEl?— A3 0 0 tORO 
(DfflaBSE^figlE-rSi:, a-1flS2 0 0li, a— 9* 
«»BHffi"*-/t3 0 0fc#LT* jtKf3y/^-/M 



OOA^Sfit/cBf^fbny-ry^ilKpDAS (K 
c) *^trtHWb3yryy«7*-* (a— 9*$§§) 

[0 0 9 4] Bg^b^yxy^SIx-^ (a— 9TO) 
0«jsK*H1 4 (c) tcS-To Bg^bnyry^lix- 
? (a— tfffilfg) ti, f%mt3y7-yymmffrz.m#. 
©If5tt?S5a- lflMMHE-9— /<3 0 0 <D§lfJ?iJ7-T 
S6*a— !f«»BBE"9--/< ID, $/g y 1 0 0 

*>e.§tlLfcBg#{t3yry , y®'r— ^ (ill 4 (b) 
(Disay^'AfflmMmttm^zT-*) % *WU C 

n^cDx-^tcwrsa— *f«{gg2 0 oowwBtff* 

Ap^nri^o ?6.tc, mmt^y^yymT-^ (a 

-if«BS) tt±, 00 (D^rmmmm 

t, a— 9TO2 0 oo^fflttKWffi^aWStu a- 

tfaagBSEu— /oootjatwsn*. a— »f« 

[0 0 9 5] (9) Sfllr-^tMiE 

a— 9*$j$S2 OOfrSBg^fbnvxyyStx-* (a- 
iffflgg) fe«fctfBfKt<t3>f-yy»!W*fr*.g# (01 
4 (c) ) tJWLIta- 9*«|ggBiiE-9— ^3 0 0f±, 

§c c©^ii5aa«, ftKBMiLfcEii 5osaa7n- 

^|Bl^<DSaaTfeD, a— lfaMIBE"9--^3 0 0{4, 
STa— 9'«§g2 0 0*>&SWfityfca-if««o^M« 
■EW»OWE*afifJa (CA) 0&M»KpCA*fl§^ 
T*fr t , ^(c^mttiEK*^ 6* 0 a L fea— ifHH 

O^M«KpDEV%fli^T, 014 (a) {C^MX 

^f-^fiitfi 1 4 (c) iCTTst^mt^yryy 

^5>tc, i>3 'ym--/^©^lli»liEW«0*aE*«fTS 
(CA) O^M«KpCA*ffl^TSIfiU ^te^WWI 
IEB»A^^t)ttlLfc5/3 >y ^-/^(D^lflaiK pSH 

op?:1^t@i4 (c) ^t^mt^yv-y^MT 
-5 (jL-iptum {c-t$ns (5) v&mtxyf-yy 

m?—** 1 os/ 3 y7m&<Dmt*m7tz>o 

[0096] (10) tfemk^yT-yvUfriffrZ.®! 

a— tf«SBIEl7—/^3 0 0{c43V^T, a-+ffflgg 
2 0 OfrBSfcLfcBfHtffcsyf yyttr*-* (a— 9* 

ms) *5 zifimite y7-yvmmtfr?LE£(»mttf 

— 9 1 «ggB!iE-9— /"53 0 0{4, Bg^fbnyry^SSr- 
^ (a— «f«8g) fc-^SnSBf^bnyryy^ "TS 
nyfyyi: Kc«a-tfl»»BliE'9--/<i (D 

AS) 3 00 CD^KISIK p D A S TBi^bb/cf"-^ : 
KpDAS (K c) £a— 9 1 «§§BaiE-9--/ , :3 0 00*6 
®m.K s D A ST^f-UTny-ry^SlK c£5tf#U 

s 5 1 n yr y >ysi k c ^=l— ymmo&wnm •■ k p d 

e veBf^kt/'cBg^fbnyf- y'ySi : k p d e v (k 
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c) *%.f$.t5o t&t>*,, KpDAS (Kc) -^Kc 
->K p D E V (Kc) ©HMtfr*©g£|lltrf 3o 
[0 0 9 7] 01 6(ca- *fmW&ai-y-^3 0 OtCfc 

Sf\ a— tf^g§HfiE^-/^3 0 0«, 

(a— ■?$§§) a— tfaBiBEtf-^ (DAS) 

3 o ocD&r^mx. pD\sx^mtLrc^y7-yymi £ 

: KpDAS (Kc) %®9Wf (S 6 1) „ & 
fc, n.-^gl^iiE-lt- 3 0 0 <D®&8lK s DAS? 
a^lTayfV'yiKcSWI (S 6 2) "f £ 0 # 

o&bbe : k p d e wvm^mtvxs§mt^yy-yy 

it: KpDEV (Kc) fc^-TS (S6 3) „ dtl5 

cilSlWTtst 7^tyxfif-^^-x (0 

[0 0 9 8] (11) fflSBE 

BEtf— ><3 o oti, ->3 7 o oic7?-tx 

L> a— 3 0 0t'>a ytt-K 1 0 

Jfios/ 3 -y y-t-A i o o fcn-if «» 200 HoffiS 

[0099] (12) BMKb3vryy7*-*asfli 

a-ifttSBE-9— 3 0 0 t -> a -v 1 0 0 13 

©ffiSBffijW&M-Sfc, 3-— * fflSBBE-9— 3 0 0 
tt, Hflfcayf^yif-i' (DAS) &i/ay7V 

-ai ootamt*. 

[0 10 0] ^ftny-ry^SIr-^ (DAS) <D*8 

$*0i 7 (d) \CTTsto v&mt^yT-yv&T-z 

(DAS) fi % 3yT>7lAiDSf$tT'$5->3 7y 
■9—^1 0 OVmftftT'hZiyavZfl D, B^b^y 
f/yif-? (a— tf$g§) (01 4 (c) 0'>3>y 
y*3j;t/a-if^^liS!tP^«^lt^fcr-^) , * 

Ma0«frttfr*.*&SfcJ:!K a-lfSHSBEtf 
-/<3 o otfSSUftitf fknyfyyir-* : k p 

DEV (Kc) **TU Ctt6©7*-*K:itr*:i— <f 
flKBBJE'9— /<3 0 OcDft^iStfttAQSftT^So $ 

Bg#{fc3 yfy^if-^ (das) ti, a- 

1f WSBEtf- ^ 3 oot a-1f«B2 0 OOfcBMt 

Ew«j^»w«n» 3 v i o o tc&ttsn 

®tifti/\, 

[oioi] a— tf«BBE-9— 3 o omem 

T*SSH#«MTfc.5fcBa&ftS#4E"l?fc**£ 
fix ^VC^yy-y^Wr-^ (DAS) t±, 017 
(d) KSti^lca- !f»0£/j)iLfc (8) 



*«<«i:f *ci:fc<, 018 (d' ) fcjR-r*$fc, 

a-DUM i d 4 hyy^f^'y 3 y i d, nyf^i 

D, '>3>y^5aSNO, a— tf-r/WXcO^r^TBg^ 
{fcbrcny-ryygtKpDE V (Kc) <£>&-r-*£\ 
a— ifWMSE-9— ^SOOtftttiJLT, ctiblcmZ 

^inuLx^mt^yf-yy^-^ (das) £ lt 

feiVo coif-B-fi, (8) Bg^bny-ryySI'r-* 
(a— tf*S§§) ottEtf'raSkftS©?, »ftf-r*4>B 
£B9§*ti> a-1f*«BE-9— ^3 0 0<D'£ffl®®.W 

[0 10 2] (13) SMr-^UME 

a— o ofrSBg^b^yxyyfiE-r 
(DAS) (017 (d) ) £g{f L•fc^^•y7"■9- 
-/ i woo^i, v&mtzyTyvWr—z (das) <d 

1 5©ffia7o-i:raai©«yi , p*'), a/ay??— /< 

1 0 Oti, £"fa— <f Hf§BHlt-A 3 0 0fre>gHL 

fca— frWHHBE*- 'Wi^EEKffafcEfcfSTTja 

(CA) O&MBKpCAfcfll^TStfTU *K^HMI 
E"»fr 6* t) ffl b/ta— »f SISBE-9— 3 0 0 <D& 

P4$tKpDAS£ffl^T01 7 (d) tCTK+VSmtay 
r/ylf-^ (DAS) (Dm^S^CD^IiE^jltT-r 
•So £5>lc, a— !f«HB04JBB«EW»0«E*5HT» 
(CA) ©MlKpCA^ffl^ifU 
EBB»*p5B9 HJ Lfca-ifflBoaiJMtK p D E V£ 
ffi^TiW (d) tc^l-Bg^bny'ry^Si-r-^ 
(das) tc#£ft5 (8) Bg^bny-ryyfBr-* 
(a— tf«B8) oa— •f«BS*ottE*HfT'r«. S 

@BO«KpSHOP^t, Hg4f 

[0 10 3] fcfc, fticRBjL^Hl 8 (d' ) « 
itLrct%mt3y9yvffiT-5' (DAS) ^^3^7* 
■9--^ l 0 OtfSfflLfcif^tt, ^>3 y 7D"-/^ 1 0 0 

m (CA) O^WBKpCA*ffl^T*ffU *K4MW 
EEWE^6l»!5aLfca-1f«ifflKE'9—/^3 00O 
^g88lKpDAS*ffll/>T01 8 (d 1 ) Kw"rW«<k 

nyfyyif-^ (das) ©E?»*o*E*Jlfif 

•T§cD*coSaSi:^i.o 
[0 10 4] (1 4) t!SBE> feJcD' 
(1 5) B&#fb3Vryy8IS*-r-^^i 
*ic, a-iflSZOOtt, Bg^b^y-ry^SiS^T 1 
-**fsy^-/M 0 OtcWLTiMff-rSo ft*, 

c©^, tgossRhSfts-b-yysyT-s^^T-ri. 

«£fi, W*KEBE**tf UT, tSSBE^/SSbfc 

if«»2 o oA^e.i/3 i o o tasfflisn*. 

[0 10 5] Bf^bnyxy , ySiS*x-^<7)^|fi!c^0 
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1 7 (e) icyjkto HMffknyrvyaB*?*-**** 
nyrVVffiX<DW$.9i:~QlbZ> : i<'3 0 0<D 

HSJ? 3 jtta-!f«» 2 0 0 £ 

iSLftavfyyiRD? I * nmm^h s h 7 yif * y 
yyofffiBiB^ Ltonyfyy I d, fttcy 

a y 7#£j«U8iHi{fc3yf y^Ex-* 1 (^37 
7*) tLta- tf^2 0 0(ciMffLTf/cr f -^ (El 
1 4 (b) #jgD tfUc^Sn-S^ay^fiiliNo. £W 

[0 10 6] (1 6) &E$aa> *5<fctf 

(17) m&mm 

mmtevj-yv mm* f - * * a - mo* e s« l 

fcya 1 0 Ott, flreffcayf yy»g#f 

-^o^EW&fttrf 5 0 cnw\ 01 ssi^tr 
■y^-Miooii nyf-y^oiRti^if fcifl-rss 

^Sayf-yy^iSffl-rsfflaTfeSo gotten 

yf^y^ii, ayfyyofftUt, fay"?, a 

ft&o 

[0107] coH^aafcs^s-eKfi, a— »?«» 
BE-t- ^3 0 oiz&%Bgmt^yT>ym<Dmfriffr 

*Ma7oHzxtf&SfcftoT^5<DT\ S/ayfV- 

1 0 oti, a— >f«»iHi:o*o«ra'et4a!ftaia*^ 

HfTT-t^^o ift. a-+f1$gg2 0 0£*5^T&Bg4i 
{k^yf yy®<9^#'£l?&i/ , ><0T\ nyfyytDftJ 
ffl*^$4v>, a— »f««BSE-9-- Att, B6*/B^T 

iK^Lfca— vmsmm-rt • ^y-feyxiax-* 

«3yf-yy*t)§l*Jb<ffllBnrffii:a*o ffiot, ya 

-y y« twsnw ayfyyftosi* a* wtii: a 5 , * 

[0108] ( 1 8) Bg^kny-f y^six-^ 2 (y 
3 7°) ^Hi 

y 3 >y 1 0 0 KfcnJSR&aaatf&T? 5 

■>3 7y^iooa, Bg#{kayf yyStf-^ 

(-/a y 7) *a— 2 0 0 ItmmtZo 
[0 10 9] Bg^knyf-y^ar-^ 2 (-/3 >y7) 
<o«l«*Hi 7(f) tc^to Bg^k^yryyUr- 
22 (i/377') a, Bg5{fc3yfyy»B#©5S#7t 

T-£5a— >ftt8g2 0 0©|$giJ?T'S5a— ifWH I 
D, a— tfBHBBffitf-- ^3 0 0*>£>§HL*:Bg#{k3 



yTyylf-J (das) (0i 7 (d) oa-fffl 

50 , **ru iin 6 of- *tjtr 5 y 3 v?*-* 
1 0 o(DW.?m*,tftti]i}-$ftT^%o ^e>{c, Bg^kn 

1 0 (KD'Ammmmt. ^-*r®%$mmv-~-^3 0 0 
©&ra«iEB»#»ttstu a— *fmsz 0 ofcasf** 

n§ 0 fcfc, a-- lf*|gg2 0 0tfa— ftlHHBE?- ^ 
[01 10] fcfc, a— ifflWBBIE-y— /<3 0 oftMBH 

■y7'-9— ^ 1 0 0W3.-i?mS&Wttft- ^3 0 0*^§ 

fl|-r*B8#fb3yf yyttr-* (das) ^jfccww 

LfcHl 8 (d* ) OWfkLfcBg^fkn y-ry ^Slx 
(DAS) t?SS«^«. ->3 77**-Ml0 0 

018 (f ' ) tejj**B8^fl:3>f yy»r-*2 

(y 3 >y^) *a— •fa»f!:as#'r«. -r&fc-^ 01 

8 (d' ) (c^-rwktfcBg^k^yxyySif-^ 

(DAS) lCf3V7y-'' l Mm%*tt1mLrc7 t —5' 
fc, ya>y^-9— Ai 0 0<D^SIEW»i:> a—?® 

sbe*- ^3 o o<D&mmmm*WittLT=L— m 

g§2 0 OKSSftTS. 
[0 111] (19) §ffif-*&E 

ya -y loofrfi, Bg-sffk^ yfyy8tf-2 
2 (y 3 «yy) *S«bfca— »f«a2 0 0tt. Bg^k 

nyf yy»f-*2 (->3 7 70 o^EJaa^T-r 
5 0 ^KBiwufeBii 5©5aa7n- 

i: |W!«OjaaT'S 5 . a— tfUgg 2 0 0(i, $ "f y a -y 
^■9—/^ 1 0 OA^feSMBl/fe-y a <yy^-^co^g|E 
W#fl!)«iE*5Eff« (CA) 0&ra«KpCA*ffl^T 

/^l 0 0O^BMlKpSH0P*ffl^TBIl 7 (F)K 

^-TBg-^fk^ yfy^itf-^ 2 (y3>yy) 

*©*8iE*Hff-r5. a— «f«»Bffr9--/*3 
0 0 ©^HjaEW*0«iE*«?f JS (CA) O^MttK 
p C A*fflV^T*ff U *Jc»ffl«EW*3^6«l0lHb 
fea— •f«g|Bffi'9--^ 3 0 0 <D£M8K P D A S 

^T0i7 (f) {C7^t^mt^y^yyUf-^z 

(•y3 7 7") fc£*ft* (i 2) Bg^fkn yfyyif 

(das) ©a^^sEJfe^fifrso safest i 

p D E V^ffl^T, Bf-tfbnyfyyf- 
[0 112] (2 0) «#5Q.a 

i/3 7 7"t-/u o o^p>§{f LfcBg^kny^yySI 

f-^ 2 (y 3 7 7*) *«ttILfca-1f»S2 OOtt, 

Bg^kn yfyyaf-? 2 (ya«y7*) fgr*n*s 
b©4>bwbk p d e vwtfksnfcB&^flsnyf yy 

i: KpDEV (Kc) *tB©frafMKsDEV*fl3 
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^TBg^fbLTBg^fb^y-ryyli : Ksto (Kc) 
££$LT, cn*a— «faWB2 0 0 

Ksto (K c) s t o^fflV^TStl/tn 

Kc5:ffll/^ Bf^fbny-ry^K c (Content) <D^g 
^5&3*SSIf?U nvryy (Content) *flf£, Hf? 

[0113] a— y«S2 o ocisttsnyryyaK 

cC«!itffi#Ml7D-^@l 9fcijVr. a— IfflWS 
2 0 0li, ^3 7^-^1 0 OfregflLfcBg 

^fknyxV^Six-^ 2 (5/ a -y 7") *»6iB©4iH 

hk p d e wB%mk%tird®mt3>Tyvm. ■ k p 

DEV(Kc)*BDUJL(S7lK ^<3tHLfcB0€ 
{t^yr-yyM-- KpDEV (Kc) *iB0$B®®K 
s DE V^ffl^T^LTny-r^yStKc^DtH-r 
(S 7 2) „ a-+f$t§®{MtK s t o*m 

yrV7l : K s t o (K c) ^LT« Ctl^i- 
1f*S2 0 OOiEtt^S (rtBMt'J) (S 7 

3) -r§o 

[0 1 14] W±«D»S!CJ:D, a— *f«BBtt, m#ft 
nyxv^Kc (Content) fc, ^Bg#fb3 yfyy© 

IBteS* $"?»<:«:, a— tr«BRffi-9-- A3 0 Otcfctf 
§ Bg j§{ b n > f- y y M <D Mfr it * tea 7° n -tr x 
t&s. for, ->3 7^-^i oott, a— *f«HB 

teaSr^T L n y -r > y & 0 § 1 1 rtS*IS» L-Tfc 
SftfcnVT-yy&tiflt&fflfflU ~> 3 -y 7°<DH:&te 

[0 115] (&®mc %MZ>7t—2 7MW) muc 

^kt-yay^-^l 0 0, a— 9*«S2 0 0, a— If 
lg§Elf-A (DAS) 3 0 0(t ZftZft^yy-yvfy 

x, B6oa- ifBWKtt*- 

£^-X, 0 8©a- WgOtSASax-^-Xtc 



[0 116] £1\ 1/ a >y 1 0 0cDXx-£X 
jWKO^T, B2 0*ffll^T8Mli"r*. ^3>y7 , -t- 
n.-if«lt82 0 OA^cDnyxy^mAM^x- 

(is i ©tea (3) fc^«) -r&c^-eteatf 

. BM&£ft5. ->3 7^-^i 0 0&, a— *F$#§2 0 
O^BOSfllx-^JfettlEU 8«EK:j»!&Lfc*&«\ 

Mictt, tea£fihT£;&\ fcs^ttra«©«y& c 

C-Ctt, J»A^fflg*»r£®^9fiLfcSBaSfc* 
ihU Xr-*X£ n»A9fif*ftJ ttZo 7t—2 

fro 

[0 1 17] 77—57.1$ WASf^Tj fcjffi&fS 

i:, i/sy^-^lOOli, a— !f$g§2 0 0 

KttLTBg^fbn ^r^Stx-* 1 0>3>y7°) 
ft (HI 1 ©tea (5) L, a— lf»b>e>©§ 

x* rn i Efi^jj ^-rs„ i vmmtf&Pj 
LKfr ? remotes mm*$±tzt)\ fcswinu$© 

tea, CCftt, »r-* l©3SflMKI*mSlHl»«D 

jibfctg, 5aa*^±u, 7t—?7Z rsnsHffi^ 
»u ii-rso 77—'?7.tf rsi i seft^Tj -zhzmft 

K(D2)-%.7.Tv7lcmtSo 

[0 118] Xr-*Xtf rstiBHfl^TJ \cW»LTc 
^ic, ygy^-Miooii, a— yamSSBE 
•9—^3 0 Ofr^Bg^fcny-ryygtx-* (DAS) 
*Sfll (01 ©«aa (12) £#/£>) r-^^liE^ 

Hff-r^o ^Etc^*Lfc»^ti, 77—27.* rgi§ 

7-yvmT~? (DAS) -PS5i:©*l«^ft*n«:*» 

ofe«^ssfttt, «aa*"t«±-rs!b\ $>^imm<om 
a, de-pa, »sMffla%3fSB«sfl»t)®ufe^ te 

a£*±U Xf-^7,5 r^€^fi5(J i:"T5 0 7>x 

ittfo 

[0 1 19] 77—271$ TSI^fl^Tj icS^Lfc* 
^, ^ -> 3 -y 7*"9— H 1 0 0 f±, a-lfa»2 0 0 

t^s§mt^y7-yymmi9w^7 : ~2*^:m (mm 
©a (i 5) tern) u 7 , -^«iE*iifT-r«. ttiE 

^tti, tea%*±-rs*\ *s^fiRiai©tea, 

mmt^y^yymmmm^-^co^imm* 
mfem&mQmLfzgks tea^4>±L, xf-?x* 

[0120] xf-?xtf rBg#fk3>T->y«jJSffiE 



(17) 



2002-141895 



oo«\ fl&aa aaioaaa (1 7) kto ^nff 
•r^o s&«aa*^7-r-5i:> xx-£x& rn&sfc 

[0 12 1] Xf-^XA ! r»&^7j icm®Ltct§ 

iba yfyyaf-? 2 e> 3 -y 7*) gMe&e (0 1 © 

®a (i 8) icttjt) %mn?Zo tftmtxvf-vym 

Eff^7J fcR£U Hr-2 2 (->3>y70 
* < »7U**^fcai'&lcW:, Xr-^X* r8t2SEf§£ 
&J ttio Xr-^Xtf r§|2BH<I^7J T*£3if£ 
E©#&X-r<y:7\ CCTHiaaaS^fc&t), Xf-^ 
X# r«2BBfll**J T<6**SM\ WBOfflSittSlff 

a, six- 22 (-> 3 7y) asfiMffii«meiandi*)iB 

to fayy*- m OOti, co«fe3ft«JH»*# 

[0 12 2] ijWc, m—*f«»2 0 OOXr-^Xlf 
EO^T, 02 1 J&ffll/^TWWrS. a-1f*ffl2 0 0 

xs*x-^*^{S (Hioaaa (3) c«) -rst 

tT^atfPwWtiSo a— f 2 0 0 te, ^3«y7 
+>—/<; 1 0 Otc^t-rSnVry^PASsR-r-^cD^i 
:£7£>L'X#>'X£§{rr§i:, Xr-^X^ WAS 

fl^7©UX#>'X*3lflrt*tr&i/^§£«, fflfflfc'fJt 

X£ r»AH«aS<S*|5u i:-T5 0 Xr-^X^ r»A 

[0 12 3] Xr-^Xtf WAS5RjM€^7J K» 
fSfc, 2 0 0 «, fsy^M 

oofr?., R^b^y-r^vS^-* l (i/3-y7) £ 
Sd (Bioftl (5) icttfc) U Sfcx-^fctftlE 
■f3„ i/3 -yy-9--^ 1 0 Ojb^OBg^k^yryy® 
r-^©«BECfiR*U/'c*&tt, Xf-?X^ wist 

E«u *aa£4'ik - f 5*\ &5WiP5$©$&a, luT 
U Xf-?X«; r»iSfl|*»j i:-T5 0 Xf-^X 



tr. 

[0 12 4] Xf-?X^ rg| 1 gfi^JJ IcMfeLTz 
3.— tfSWS 2 0 0 tt, a— *f«Sg^iE-9-- 
/<3 0 0E»l/r, Hf-sffbaVT^yStx-* (a-+f 
$S§3) (HlOfflS (8) CMS) U x-^g 

«ux#yx*5Hifs. r-£§dl^X#yX£g« 

bfc*§-g-«, Xf-^X5: rgt^g^Tj KHfcU -r 

**\ *5^tiiBi«o«La, ccm si^ft^a^m 

[0 12 5] Xr-^Xtf rgt^fB^7j fcS^bfcli 
a— tf«$ 2 0 0 ~> 3 <y /X 1 0 0 

«aa (i 5) EMS) -r-^^fiux^yx^sffl 

■TSo 7 J -^S<lU'X#y7 > ^fflLfc^i-&ii, Xt- 
Wfb3yr^ya3S^#26^7J (cS£ 

•t'ifrsAv fe^iHiiBUfoiaa, cc-ea. i*ka 
B«asfli*»j t-r«. xr-^xtf rw^ba^^y 
[0126] xf-«tf rBSf^bnyf-yyiBasffliS 

(i, ^3 7^10 0*5,, Bf^b3Vryy«7* 
-5 2 (->3-y7*) *gfl (01CDSaa (1 8) left 

fe5VH±^<0S!ia> CCTHi, »f-? 2 (i>3-y 

Xt^-^X^: r«2S€*»J ^f5o Xr-^XA< 
r^2§fI^7J T*««^EttSaa!»7i:*5. a- 
if^§§2 0 0li, C0i^i«mnyfy7l! 

[0 12 7] *fca— yflKIKiE-y— ^3 0 OOXf- 
^X»co^t, 02 2^fflv^TKJ0^-r5o a— tf* 
«Btf9— /*3 0 0t±» a— «f«882 0 0*>6©Bg#fb 
nyf^lf-^ (a— «f«HB) ^gffl (0 l cD^a 

(8) icttfc) -tZcfeimifiMI&ZlxZ, a-if* 
«BSE-9--/<3 0 0«:» a— 9-TO2 0 0^5OS«7* 

>xy^ilx-5 (a— tf«S) ©S€«Ui*BiSleI» 
*t)jgLfc«, ^a^tfihL, Xr-^X?: r®g{B^ 



(18) 



2002-14 1895 



%u tt&o m^m%j] Tfes^^c 

«*>tt*^jaa (0i<o$aa (i o) tc^jcs) ^hit 

[0 12 9] Xr-£X# mirVftx.7zJi KW&L 
tcWin, a— lf«SBiE-»J— /<3 0 Ott. ->3-y 
^-/Si oOfcttUTBSraflsayrS/yttr-* (D 

AS) (0 1 (12) fcfcfoS) U ->3 7 

/u o ofr6©x-*g{B/sg£§{rr3 0 x- 

ccm Bg^fbnyxyyStx-* (DAS) 

x& raa&flWciscj ^ti-o x-r-*x# rsi^i^ 

7J T»*»frei4» «U!»7i:&*o a— ifiSIE 

CO 1 3 0] (nyx>7WASaaxa-) a- 

fcttoTS'a ■yT'it- Al 0 0, a— ffflHg 2 0 0 , a 
— lf«HSBiE'9--/<3 0 OBTSffSnSr-^SSSfll 

A, B, C, DK$HRILTBW3fS. 
[0 13 1] A. J/g«;^- /^fca-lfttSlffltfett 

s$aa (b i K/^-r (i) ~ (6) offlso 

a— >f$|gg 2 00t->37 "f^—t^ 1 0 0 OfflSSIE- 
a— tf«B2 0 0A^->3 0 0fc:*ff*3 

yfyylAS^-^a 1 0 0*)>e>a— tftS 

(@ i tit (7) ~ o) tosaa) 

a— 9»*»2 0 0 ta.-*?®gmm--*3 0 OcDfflS 
C. a— !f^t§BgE-9--/^^ 3 y^-^IBt*»t* 

*aa (s i twf ( 1 1) ~ ( 1 3) (omm 

a-tfWWWEtf-'* 3 0 0t->37 1 0 0 

©fflSBBE-B&^bayrwai-r-* (DAS) jgfi 
~ 5/ 3 -y 7-9— > He *5 £> SHI x- * ft&E. 

d. isBv7v-^h^-vw8&mz*sv%ym (01 

(14) ~ (19) <D9BM) 
a— 2 0 0^-^3 7 7-9— /< 1 0 0 £D*B5|giE~ 
a— if«»2 0 0**62/ a 1 0 0fcit1-*B6 

^•fb3>-ry > y©S5tc-r-^2ifi~>'3 -y Zf^-n l 0 



0"*»6a— 9*1»«82 0 0fC*ftSii2 (->3 7 7l 
ffl~a— !fWH2 0 0r-fctf*5M7*-*««E. 
[0 13 2] g-f> A. i/ay7^-/^a-+PMSH 

cfcw-saaa (0 1 icst (i) ~ (6) ©©a) co 

l^T, 02 3, 02 4*miT$mtZo 
[0 1 3 3] 02 3, 02 4fCfeVTs SAWS' 3 >y7 

•9— /^Ojaa. tfilll^a-'tfWBofflaSifew-r. 
•f^T©7n-tcj5i/^T, i>3 >y7D--^OSQ ! ax-r-y 
7No£S10xx, a— *fffii8<OSaaXxy7 , No«: 
S 2 0 x x, a— ♦fflffiBffi-9--/*©JgyiXry 7"N o 
£S 3 0 x xtLTito 

[0 13 4] $1*, H2 3 k^-tj: 3 1, amMtett 

^frsns (siooi, S2ooi) 0 ffisssEffia 

fT^n^o fflHfgSE©afc&^T£$Lfc-fe«yS'a >at 

zm^r. ^c^cT^fix-^^m^fbbTx-^ 

fflflt*Hff f 5 o ffiSBSEtfjafi-r 5t S/ a «y 7-9— 
BMKHr-^-X (03#fi8) {c#r*l~> 3 >y 

yjaaNo^tffc^axy h v t Lrma (s 1 0 0 

3) *5o 

[0 13 5] -75\ a— >f«8§fcJu fflSMtfjftft-f § 

-^^-X (08#88) lc$iMhyyifti'3yiD& 
ffifcftZLyhV tLXmhU (S 2 00 3) f5o 

C a-if«|»{i, i/ay^-^ic^t^nyfyy 

®XW$.T-Z<Dmm (S 2 0 0 4) , 0 1 

4(a) \zmt (3) »AS#r-*0&flM?£fT'r 

So 

[0 13 6] i/a a— *f^*>P,cony 
7^yMAg#x-**£fll (S 1 00 4) §fix 

(s 1 005) (ommwntZo 7*-*ttBU4, 
fttwwi/fcHi icDjaa7o-fc^^fcjaaT'S5o 

tmtbZnZt, a— ifBHBKWLTSfiO 
K©UX#yX^{§ (S 1 00 8) U PSWa-r- 

^^-xoxf-^x?: rmxsW^Tj teste (s 1 

0 1 0) -T5o SHx-^OlWEKitJx f^WI 

<D*§^l^;f r -^T*§i:ig465n5i:, a— «ffi|gg 

&c#LT§{§NG<DbX#yX£3£f§ (S 1 00 7) 

L. SMH^ax-^^-XcDXx-^X^ imsttfc 

ascj (s 1 009) tSo 

[0 13 7] a-lf«»{i, S/ay/**-/«i<60Si 
OKCDl^X^yX^gfi (S 2 0 0 5, S 2 00 6T-Y 
e s) T5fc> PASa-r-^-^-XcDXx-^X^r 

r»AS*aS«^7j KiBEU ->3 7^- /^P>0 
SfgNGbX^yX^gfl (S 2 0 0 5, S 2 0 0 6T' 
No) ?%t. HSAWax-^^-XtDXx-^X^ 
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[0 13 8] J/av^-/^tt, mW&Wr-Z*- 
7<D7f—<?7* rj»ASf^7J (S 1 0 1 

o) ft, ^mtiyy-yvWr-tt i c^a^:/) (0 

1 4 (b) #Jg) (S 1 0 1 1) U a— IflMS 

7-yy : K c (Content) fcjgffi (S 1 0 1 2) U £ 
0 14 (b) K^-r«^k=iyryy«'r-* 1 

&3vzn zmm cs 1 o 1 3) 

[0 13 9] a— lf«l|{4, PAWa-r-^^-X(DX 
H§AS#jH1^7J KR£ (S 2 0 0 7) 

ft, -y 3 v7V->^t>, uyfyvm ■■ k c -eimit 

Ltc^mt^y^yy ■ K c (Content) £§{t (S 2 
0 0 9) U S£>£, {/ay^- /^e>B|f#{k3^r 
y^Slx-^1 (^3 771 (014 (b) ) 

(S 2 0 1 0) "TSo 

[0 14 0] 3— tf«j|gtt, X7-y7S 2 0 0 9, S 2 

o i o-esffLfcx-^oawEEaaa (Hi i#mo 

fr (S 2 0 2 1) U SMIf-^OttBEfcJ:^ r-* 

^^-/^cMLTSff OKCQl^XtfyX^gfi (S 2 
0 2 3) U IAfif-^^-X07f-^X* rgt 
l^fl^Tj fcRJE (S 2 0 2 5) 1-§„ gfgr-*© 

jKyXfcjJSft (S 2 0 2 4) U BfASU'r-^-X 
©Xf-^X* r«lSfl|^»j (S 2 0 2 6) 

bfcft, ->3y^-9--/^(D»tt*«I5 (S2 02 
7) „ 

[0 14 1] i/sv?*)— /<ti, a-if«S§fr&0UX 

jtfyXfcSfl (S 1 02 1) U l/X#VX^OK?$ 
PHff3T-*^-XcDX7-£X£ Till 
BBff/SSjJ tlgS (S 1 0 2 4) -TSo UXtfyXtfN 
GT'fc 5 I/tHmSx-^-XcDXx-^X* 

r«lEfll*»J KRS (S 1 0 2 3) Lfcft, 3— If 
«»fc0ttfi!*£J3 (S 1 0 2 5) o 

[0 14 2] £43, Xf-y^S 1 00 2, S 200 2O 
ffiSBEj«c«tO»&» S 1 0 0 9cDX7-*XO mX 
§ft«J OtaS, *J«fctf, S 2 0 0 8OXf-^X« 

[oi4 3] b. 3.-*fm$%wmy-~^t3.— *r 
mmmiasvzwm miK^-r (7) ~ o) <om 

M) fcOVT, 02 5<07U-\C'$.iT;MmtZ> 0 

[0144] s-r, 3--*fm?iWm-^t3--*f®,%ii 
wfcfc^Tffls&Eawfstts (s 3 0 0 1 , s 2 0 

3D. ffiSBSBKMtt, 01 2SfeliHl 3%ffl^T 
SMBLfcM.gi: LT*ff?n§o fflSBKfflSfcJS^T 

* £Bg^{fc L T -r - *JH1 *5Sfrf £> o 48 SBIEtf $ i 
73 a— •f«B8SSE-9--/^±, 7^tyxflr- 



£^-X (0 6 #80 K«f«3.— <f*K§RI«-- /<»!! 

no. %*rfca«Bix>hi;fcLTiiin (S3003) 
7§„ 

[0145] -77 3— w, fflSBffijb^i-rs 

i:, H&^kny-f yy«r-* (a— tfWi) (01 4 

(c) #BB) (S 2 0 3 3) U 3-ltfHSKSE 

•9--/V\j£f§ (S 2 0 3 4) 7 ?>„ 

[0 14 6] =L-^mmmm-^it. a.— «f««ft»6 
mmt^yfyvrnT-* (a— «f«ig) *s« (s 

3 0 0 4) U gflH*-*©tftH (S 3 0 0 5) **ff 

■tfWBfcttUTgffio K©ux#y**asfli (S 3 0 0 

8) U ^-I'-byXflf-^^-XCXr-^X^ 
rHSfg^7J K»e (S 3 0 1 0) "T4. gfir-* 

£B&5>n3i:, a— ifta$K*fl,Tg<lN G©UX# 

yx%&n (S3007) u v^-tyxssr-^^ 

-X<DX7-*X& r^fi^fej (c^Jg (S 3 0 0 

9) ft> a-ifaffii:OSBtt*«« (S 3 0 l l) o 
[0 14 7] a— lf«H8K4, a— tf«BBSE-9--/^6 

<D§{f0KC0bX^yX*gf§ (S 2 0 3 5, S203 
6TYes) BfAWSx-^-XOXr-* 
X£ r«25fl|^7j ICSJ& ( S 2 0 3 7 ) U a— ff 1 ^ 
»BH*-/<fr6o2fllN G ux#yx*£« (S 2 0 

35, S 20 36tNo) W AS St 1 — ^ 

XOXr-JX?: Wfl^ljjj tc^S (S 2 0 3 8) 

bfcm, ^-if®%%mm- ^t<ommwz cs 20 

3 9) „ 

[0 1 4 8] &*5, Xr-y7S 3 0 0 2, S 2 0 3 2CD 
[0 14 9]*t. C. a— tfHHBE-tf— ^fc*>3 » 

■7°y-/mKi5ifz>9m (.muc^st d o ~ a 

3) (OWM) (COV>Ts 02 6<07u-KV£-3TmWt 

[0 15 0] *-f, a— if' flKHBlEtf-/* y 3 >y 7^ 

-^HfcfcV'TtSSBiE^ll^^nS (S 3 0 2 1 , s 
1031). fflEBfiBflSfix 0 l 2$fct±0 1 3^rffl 

^T^tfcsaai:UT^T^nso ffiSBiiEsaatcfc 

3— iflMlBK-9— /<tt, Bg^fbny-fy 

yHf*-* (DAS) (017 (d) #!ig) (S 
3 0 2 3) U ^3 -v7+f— /^KSJfll (S 3 0 2 4) t 

[0 15 1] -77 y3-y7-|f-/^±, +ISBE©^lz: 
ft, a— !fM«IKIE1f- /<Jin6W^{b=i yfvyttf- 
^ (DAS) (HI 7 (d) *S(B (S 1 03 



3) u %mT-#(Dmi cs i o 3 4) %mr?%o 

ffiSE^-^tcWbTSfliOKoux^y^iieaSfll (s i 

0 3 6) U IIWIf-.^-7<DXf-^7* r« 
SffiS?7j KKJE (S l'O 3 8) -rs. SfMx-?©^ 

46 5 ft 3 , 3.-4? «BBIE-9— *t b Tgffl N GO 
bX#yx£&{g (§ 1 0 3 7) U HHSJlx-*^ 

-xoxx-^x* rasffl^uu teste (s l o 3 

9) ft, a~lf«HSBBE-9--/^©S*l*«I* OS 1 0 

4 0) o 

[0 15 2] a— *f«BBiBE-9--/^i, ^37^-^ 
ft* 6 ©SfllO KcDbX#yX£^fg (S 3 0 2 5,- S 3 
0 2 6T*Yes) tits vJKVTMWr"-*'*^ 

©Xx-*x£ raaMKSTj fc«5£ (S 3 0 2 8) 

U ->3 yT'-fr— /<5ft»5<D£{gNG 

'(S 3 0 2 5. S 3 0 2 6T'No) 1*5 V-f-tyX 

(S 3 0 2 7) bfcft, a— »f«BgBiE-9— /^©SStt 
£■#15 (S 3 0 2 9) o 

[0 15 3] &$5, Xf'V^S 3022, S 1 0 3 2O 

[0 15 4] JWc, D. S/ay^lf- IfWBIB 

tcfeitssaa (i i est (i 4) ~ (i 9) <o#aa) 

EO^T, 1212 7, 1212 8*fl§l^TBMI!1"*. 
[0 15 5] tt, ^Mffltemc, i/Bv7yr-rtt2- 

»f«fflraic*i/^TfflSBSEft^fT*n« (s i o 5 
i , s 2 o 5 1 ) o mRMtmmit, m 1 2 &rcim 1 

jSS«B*t*-* (017 (e) #BS) (S 2 0 5 

3) u zsavrv-'^mm (S2054) ts 0 

[0 15 6] S/ay^tt, 3.-1f OflKt 
{b3yrW«a6ffiS*r-^%Sfll (S 1 0 5 4) 
b, Sfll'r-^©«MSE**ff (S 1 0 5 5) "TS. r- 

bT§fgOK<DUX#yx££fg (S 1 0 5 8) UW 

»anig*§tts57j eis^ (s 1 0 6 0) -rs. &m 

UXtfyx^jgfg (S 1 0 5 7) U B8H@ax-*^ 
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£»J EISS (S 1 0 5 9) T5. 
[0 15 7] a— *fMH& '/a-y^-z^BOSf 
OKOUX^^Sfl (S 2 0 5 5, S 2 0 5 6TY 
e s) -T5i:> WASar-^-XCX'r-*** 

ri«^{b3>ryy«as«s*as«^7j tset (s 2 

.0 5 7) b, ->a 7^-/^f»OSiN G l/X#y^ 
£g{g(S 2 0 5 5, S 2 0 5 6T*No) t5t BI5A 

SMffig^tefciSj (S 2 0 5 8) fSo 

[0 15 8] ->3-v^-^m BSHSar-*^- 

7 J (s 1 0 6 0) ft, HHHfcaf^yytt?*- 

*2 (S/ay>0 (Hi 7 (f) #88) (S 1 0 

6 1) U a— tf$|ggfc*fbT, Ell 7 (f) KSTHg 
ffkayfy , yif-i'2 (^3 7 7) (S 1 0 

6 2) fSo 

[0 15 9] a— tfHStt, B8ASar-^-X<DX 
x-2X£ rng#fbn>"r>y«aifllS«aS<i^7J 
|g£ (S 2 0 5 7) ft, 5/ 3 y7lf--/W6, Hg#fb3 
>f>7lf-^2 (i/3^7) (HI 7 (f) ) *S 
ff (S 2 0 5 9y?.&o 

[0 16 0] a-+>i$i§{i, Xr^ys 2 0 5 9T*gff 
Lfcf^OttSBfig (0 1 1 #88) *HfT (S 2 0 7 
1) b, S#x-^(0^iEE<tt), f-?«H©%^ 

WbT§{I0K<DUX#yX£i£{i (S 2 07 3) U 
B8A l taT"-*^-X<DXx-2X£ r»2gflB57J 
Kfig (S 2 0 7 5) f*. SfltT-*©*SEK:«fc»), 

i: , S/ a «y / *£*f b Tgfi N G © UX # y X£g 
ft (S 2 0 7 4) U B»ASfax-^^-X<DXx-^ 
X* rgt2§{l£flfcj tC«B6 (S 2 0 7 6) bfeft, 5/ 
3 y7V-rt£<0im&ji% (S 2 0 7 7) o 

[0 16 1] 3/3y7tf->$liv a— !f«8#Sft>e>©yX 
/tfyX^gjg (S 1 0 7 1) U UX^VXft^OKT* 
ISHfSr-^^-X^Xr-^X^ TSi2 
Eflia*J KBBS (S 1 0 7 4) UX^VXft^N 
GTSS^i, SiSSar-^^-XQXr-^X^ 

r^2BHffi*»J (Cg^ (S 1 0 7 3) b/£ft, a— If 

(S 1 0 7 5) „ 

[0 16 2] £33, Xr7^S 1 0 5 2, S 2 0 5 2© 

[0163] >ry < >'Effl : e'rVl/ 1 <D%zBm] 

oo^TKiBtTSfc**, 3S*WKa— tf«HSBBE-9— 

tfe^t n y x y^aioftHt ft^jaa^HR-r swjst 
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[0 16 4] 02 9K.iR*Wgltt, Isavfy-'Wm 

T&So fa 1 0 0(4, a-+f^§§2 0 Ofr 

&©3yf-yy)»Xfi**S«"r«*V a— «f$g§2 0 
ot#^S3y-ryyEfmiE{i-9--^4 o otf^frf 

So #ffin*«, #xyf-fr-n»-effiSBBBI**« 
LTi^Stf, i^nvfWEitf^lia, *I5B 

[0 16 5] */3?^-/<l OOfi, a-1f«iS2 0 
03&»6Oj»XB*7*-**3MIU -f-^&IE (H2 
9<9©a (3) ) *fr*oT» g^-r-^IESft^fil 
BLftft, E#9--/U0 0£*fLT, nyfy^Si 
S*03KS*Hfi (02 9<D$&a (4) ) TSo BHft-9- 
-M4 0 0S, i/ ay ?■*)■— m OOA^Cnyf^ 
Ef8g*x-2£4MEU f*-*©IEStfeW*K*n;fc 

#{fc3>^yyfe < fctfB&^{fc3yryy»7 f -* (gBfi 
U— /*) (0 2 9tD$aS (6) ) T So Bi#{fc3 

yfyylf-? (Efi-tf-- /<) «, wM<Dnmm<DS% 
mt=i>y-yvUT-2 l (->3 7^) fcjwsu a- 

+^§§B!iE+)--/WA v PJgtK p D A S TflflfffcLfcay 
f-y^iiKc, -T^to^KpDAS (Kc) ^"g-trx- 
*T&5o 

[0 16 6] a— »f«S2 0 OtfEflW-"-/^ 0 Ofr& 

Bg^toyxyvfciaW^yxyySt^-* (SB 

[0 16 7] ftrnfflOo^Tlt, ->H7^-^1 0 0 

<OIE=3l4£*£iiE-fS#itg, a— «f«»BffiE-9--/^5 
©, jWJfrAS^OBg^fbnyryyttfcgfcU a- 

(owm. E«£t?fct>&</>o &ot, w*tf**f-* 

SrWrs^s^yryyEli-tf--^, f-bzvfv 

yryys^ttfcfc38»©E{itf-^fc»LT 1 o 
*wa-r*Eflre— 'Vc^yf-yy&m&x&Mmtz 

£0, mif, a— «f||»tS/av^-9— /TOsanaia 

5a-if«IS^ti^lR|jifli-P*5fe«>, lB3Sa«S)l 
[0 16 8] 03 OS, 132 9 tfflffii/a y7*)—/«D 

mmzftmu ~>3 vfy—^tmm-v—^wfrcffi 

GicT&O, 3 y i% l o 0 tt, a— *f$g§2 0 0 
*^©3>fyylAS^ffit5tf, a— WMI2 
0 0 fcft-f S 3 y-ry^EflteEfi-tf— 4 0 0 *<*ff 



■fSo 02 9<D#f/j!c£g>5:Sji5ti, v-ay^-^lO 

ofr&EflW"— >*4 ootcjitbtnyfy-yffiiS^ 

£{i-£f\ 3--*TWffi,WMV-^ 3 0 0 , BB€+J"-^ 
4 0 0KttLT3yryyffiffig*£&ffif S«/£i:L 
fc^T^So 

[0 16 9] ->3y/tfwq 0 0S, a— »f^#g2 0 

Ofr&OBARdtr-^fcSflU t-*08ME (03 
0<D<m (3) ) ^oT, g*x-^(DjES14^5l 

BLfdt, a— tflMHBfi?- /<3 0 0K*fLT, 3y 

xyysim*ossfl*^fT (0 3oojaa u) ) t 

So a— »f *8#gBSE-9-- A 3 oott, x-*© 
ttfiE (03O©iKI (5) ) *frfc?T\ g#x-*<D 

£3tt*»BUfc&, EfflhJ— /<4 0 0Ettl/r, 3> 

f-yyE^s^oasM*^ (03ooiaa (6) ) r 

So /<4 0 OS, a-1f»»Bffitf-/<3 0 0 

tf£©3yxyyEMg#T-2£:$SEU jEStttfBS 
B«nm, a-*f$g§2 OOKttLT, ayfyy 
f-^'<-x4 i ofrZ&QtHLrcBgmt^yT-yyls 

zu^mt^yf-yvmr—? (Ef§-9— /t) ^« 
(03o©$aa (8) ) ts 0 B^ffcnyryystr- 
* (Efi-9--^) (4, wao*)Mlofl»fl:3Vf-yy 

«r-*l (~>3 7y) KJBSU a— •fWKBKlf'- 
/«D&BMI K p D A S Vffemt t fc 3 yf- yyjjt K c , 
T&fc>^KpDAS (Kc) £3tT7 f -:5'?&5„ 
[0 17 0] a— tfHg§2 0 OtfEflW— /M 0 0*>6 

B|f#{k3yry > y*5J:a : Bi^{b3y7 L y > y®7 s -^ (E 

[own *mmos^Tit, a-vmMUE#-- *< 

3 0 0S, a— »f«K82 0 0*»&oai©*»^ft»*S*W 
M, ^ayy^l 0 0tcWLT3yxy < y|»Ag^ 
tf&ofcB&ST, 3 yf y^I8AB5t?±ftT'feSa-if 

T, a— «2 0 Ofr&0tt®frf*fr*a$Sffiff 
K, fecS^i^*©3yry^MAg^a— tffflKg? 

« 5 ^S^<DS8-&«aSAWffi a S o 
[0 172] [l. 3. S*3y-ry^E{f ; &f ; ;V2] 
03 l%ffl^Tl*nyry^EI : tf;l'l fcS 
%§S*nyry^EM ; er^2{cov^TSiB^-rSo 8 
*nyry > yEffl*r^2Tti, a-if^§82 0 0 fca 
-If SHBBBE-9— ^ 3 0 0 tOfflTti-r-^SISffi^fT 

tnav^o 0 3 nc^-r^ffia (i) ~ u 9) 
0^-fSo *hss0ijt«, iyf-f 7-^fs<ommc 

fc^tilllffll ( ( 1 ) , (7), (13))*ff 

[0 17 3] (1) fBSRBE 
3yfy7S->3 1 0 0A">e>)PAb<};-5 

5a— tflSlfg 2 0 0S, ->3 y l o 0 t<Df3-? 



(22) 



1#Pw1 2 0 0 2 - 1 4 1 8 9 5 



ffx- 2 * W ^{b L T r- 2 il If **ff t * o 

[0174] (2) V^VWssy I d. biab^x 

o) mkmntT-mm 

i/ a y ?*r-^ 1 0 0 fca-iflHS 2 0 0 fflOffiSgSIE 

g*7*-**£js-r*„ i*AB*r-*0wa*Bi3 2 

(g) Cwt, HAB3<x-2te> 3yf yy»A©B 

WtfaVlDs a-lfflBS^IBA^fta-r 
*#ftfinS*iT^4. Set, ISAB^x-^fcfi, a 

ymicmimfrcom-s&s &r bfc&ft-r&tt-r s&b 

[0 17 5] (4) Sfflr-*8ME 
03 2 (g) »AS#7*-**a-1f«S2 0 0 

iEjaa^nfr-rSo ^teaaopiffltis ^01 s*m 
[0176] (5) sBmt^yy-yviszvmxgttT 

•>ay^-/< 1 0 Otcfct^T, »AB#7*-*©ttffi 

n yy-y y& i. tffSASttx- $ £a— tf $i#glc&{f f 
•So <rne>te, ziyj-yy^^yr-yy^r-'V^mtL 

fcRSreffcnVrVy : Kc (content) HAB^S: 

yy*-:'Kc*a.— IfWBKK'tJ— (DAS) 30 
OO^SlT-Hf^bbfcBg^knyT-y^ll-r-^ : K 
pDAS (Kc) £"t£&^x-#"?&5o 
[0 17 7] fl»ASftf7*-*®*l/S*BI3 2 (h) let* 
to J«AS#7 i -^ti, ayrvyPACB^TcTSS 
a— »f«S2 0 0©i»giJ??*5a-lf«&l D, ISA 
B*x-2 (0 3 2 (g) oa-1f«H4»MMEW»* 

— Al 0 OA^fiKL/fcv'3 -y^SaSN o. Ctl 
P)OT f -^JC*f-T§i/3 «y-/-9--^ 1 0 0 

i o o (D&mmmmtfmttiEti, ^-^mm 

2 0 0fc3l#«n5. ^ay^-z^WatilW 



fcfcV^T, a— *f««llIEjSf*»#0*frtt, &-f bfc 

[0 17 8] (6) g{§r-£$II 

y7*1f--;< l 0 OfrZBgmtziyT-yy : K c (co 
ntent) 4:, 03 2 (h) {C*-f fSAgttx-^fcgffi 
Lfca— tf»g§2 0 Ott, »AStf7^*©*EfflI* 
HfffSo COfcBEffiSti, 5feK8iWbfcHl 5<Dffia 
7n-i:raa9«rai"PSB!3 % a— if 2 0 0 it, Sf 
>>3 77"D"-/^ 1 0 0*^S^Bbfc^3 y^tf— 
HJ«BEW«©tMI*«fT» (C A) Q&NMK p C A£ 

m^rmfLs ^c^mmummij^^o rnvr-y a y 

-?*r- MO&HflSlK p S HOP£fflVT03 2 (h) 

[0 17 9] (7) fflHBffiE 
(8) HS^bavf-yyttT*-* 1 ay 7) SMI 
3j?tS/ 3 7 W~t\ 10 0W:, a— trflMMHEE-*-/* 3 

ootrmu ->3 7^-/uoot, a— «f« 

g§EljE-9--/^3 0 OfflK*V"»TffiSBKffl3Ift3)lffr 
§ 0 fflSBHtf/Sif 5 t, ->3 7 10 014, 

a-tf«BR«E-9--/<3 0 OfcttLT, H^ta^fy 

1 (~>37^) =£^ffl-T5o 
[0 18 0] ^mt^yf-yymr-Z l (^37^) 
©«JSR*H3 2 (i) KiS-f. Bt-^fb^y-r^-ySlT 1 - 

*1 (v-3 7 7") tt, Bf^fb3>f >y«*»»*^fi* 

OB*5fefeSa— •fWBHBK 1 9--/<3 0 0 ©SSgUT-T 
$5a- tflWHHBW— '< I D, a— tf«H2 0 OfrS 
SfHbfcHAB^x-? (03 2 (g) ©a-if Affile 

u cine.of l -^tc^fr5^3 77'-9— /u 0 o<D« 

7*—* 1 (->3 7 70 tct±> , >3-y/'t-/U0 0O / ^ 
MfifE^*2:. a— 0 0 QiUimElllfttffftt 

sn, a—<f«siKK"9--/^3ooKasw*ns. * 

43, a-lfM§§W--/S3 0 0 !f««^BB«liE 
Bit, 5/3 y ^-9— /^B8»lEW«*-rTe«WbTV^ 
5*&l±, ^-fbfe^i6TS#-ri.^Bli*V\ 
[0 18 1] (9) gflr-^^K 

->3 y^U--/^ 1 0 0fr6Bi^{b3y-r:x > ySif f -£ 1 

(5/ 3 y y) (0 3 2 ( i ) ) *gffl Lfca-tf «»B 

cflDttttEjfflati, JtefcBHBLfcHi 505aS7D-i:|5l 
«©SaaT£t), a— ifttHBBIEI^ ^3 0 014, Sf 
i/3 yT"^-/^ 1 0 0^6.S^bfc5/3 y^-zWiJ 
B8SWiEW#o«M0E*f8fT» (C A) oiiBMlK pCA% 
ffl^T^fTl, ^^^SlliE0llF^e.|J , 3mbfc~>3 7 

p S HO P?rfflv^T03 2 ( 1 ) K 

^■THg^bnyr^^SIr— ^ l (->3'y/) 

•©*BE*«fr® (CA) O^HWKpCA*ffl^T3* 



* 

1 
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glSlKpDE V*ffl^T03 2 (i) lu^-f Hfffftn y 

f>';if-? i (->3-y/) ic-i-sns (3) pam 

[oi8 2] do) vgmtayT-yymfriffrZ.wm 
3— "fUBBElJ— /<3 o otc&^T, ->a y^it-M 
1 0 OA^^ftfcBi^fbny-ry^iir-^ 1 &a 

^-^fmmum— * 3 o o it. egmt^yf-yy 

(DAS) 3 0 0 <D&mm KpDAS T'Bg-iffb Lfc 
T-Z : KpDAS (Kc) *3-~*¥m$Wm- 3 
0 0 K s DAST'l§LT3>fy7lKc5; 

B»U «6t3yf->y«Kc*a-1f«»©^|JI! 
1: KpD E VPHS^bLfeHg^fb^Vf-^ya : K p 
DEV (Kc) *£.mt%o t%.t>*>. KpDAS (K 
c) ->Kc-»KpDEV,(Kc) ©StMtfrA&ia&SI 

[0 18 3] (ii) Hg#<tnyf yyx-^am 

a— !f *#§rbe-9w< 3 o o f4, wmtxyf-y 
vWr—z (das) & s> a v ■?■*)— i o o fcjgflrr 

So 

[0 18 4] ^{friyTyvWr-Z (DAS) 
$£03 3 (j.) (C^-Tc SMMfcny-fyyttr-* 
(DAS) fi, 3>fy7iA©S^t*feS->3 7^ 

■9—^1 o CKDmwe&z-yayfi d, Bg^fb^y 

rV7if-? 1 (i^a-y^) (03 2 ( 1 ) ct»h y 

-/S3 0 OA^^L/cBg-^fkny-ry^SIr-^ : K p 
DEV (Kc) CtlSO'T-* KH+*a—V 

&fc, s^mt^yf-yymj"-^ (das) tea, 3- 

^3 0 0 t. a— !f«f8 2 0 0 Q&Hft 
KEBWtfifsfd'^n, ">3 1 0 Ofcj&ttSn 

g&4&l\ 

[0 18 5] Sfc, If «KSKBE1J— ^ 3 0 0*MB* 

J4, n^iyy-yvWr-Z (DAS) (4> 03 3 
(j) tc^f^dft (8) ^mknyy-yvm?-* l 

<, 134 (j' ) tCTjrf £5tC, >/ 3 -y7lD, 3- 
IfftSID, b^yif^>3> I D, 3yfV7ID, 
~>3 <y -/iaaN 0, 3-lffvUXO^P^T'B^ifbl, 
fcnyf-y^SlKpDEV (Kc) <Dg-r-££, 3- 
*fttSEffitf^3 0 0tfJfttHl,-ts etlSfc#B*tf 



JraLTB^bnyT^ygtx-* (das) £LT&=fc 
i#\ Wt^SlilWli, a--tflW»Bli«--/<3 

[0 18 6] (12) Sfcf*-**!! 
a.— <f«HHBttE"9— ^ 3 0 0^6«#{b3>rvy«7* 
(DAS) (03 3 (j) ) *gfbfti/3y^ 

-/uooii, Bg#fb3>f yygt-r-* (das) <d 

1 5<DffiS7P-i:[W|$<DtoiIT-&t>> i/3 7^-/ 1 ! 
lOOti, £"f3— ifWHHBK^O 0 0A>P.S^L 

(CA) ©^B8»KpCA«ffl^TilfifU *KWm 
EW»fr6*»)aLfta— »f«BBK*-^3 0 0©£ 

BB«KpDAS*ffi^TH3 3 (j) fC^-fBMft^y 
t^SIt-* (DAS) ©tt^afcoaWEfcgfrf 
%o $fcfcSMBLfcH3 4 (j* ) (DiSBSfbLfcBg 

fft3>T>7ir-^ (DAS) ^37^-Ml 

j6SK«UTBI3 3 (j ) ©HSrefbafx-vyf*-* 
(DAS) rtcOBg^fb^y-ry^Sil (v-B-y^l) £ 

[0 18 7] (13) faSfSSL fcvfctf 

(i 4) mmtey7-yyMg»7 ! -'$tm® 

Mc, a— «f mm 2 o o 14, HHtffcnvf yy»S*7* 

-^3 7^- /^WLT^fSo ft*, C© 

IBs m<Dm#£g%%-tvi>'3y'eg&*$tf7?%t%'& 
it. H*ffiSBE«*frbT, ffiSBBaVrtitfecfc 

[0 18 8] (15) tfciBJm fecttf 

(i 6) n^jaa 

Bg^{b3 yy-yvmmXT- 9 fca--lf»»*»&*fll t 

/c->a 7^-/'! 1 0 0(4, Bg^{b3y7 L y^SIS*f f 

y -7*t->\ i o o \t. ^yTywmvmzicm-fzm 
sfe^a^ntTf^o is^saatts a— tfo«t)§itpffi 

yf^y^ti, 3yxy > y©^{t^S#, ->3 7^ 3 

-vmmwm-^mmmKZ, m%m&mimtti< 

[0 18 9] M3SbfelS*tf i ;H i:nfll, cclil 

atcS5St?K(4, 3— »f a§§B!iE+>--^ 3 o 0tcJ:5 
B§^b3yry > ySI©SiAHt)b^ffiayo-bX^^i: 
ftoTV^©T\ ~>3 •y7 p -t-/ i ,l 0 014, 3-^«g§ 

mh<D^<Dmm:itm^mi^m.^i-v^^\ 3 
— »f»»2 0 oiz^x^mt^yy-yym<Dm.^ 

t?tftv><DT', 3>r> > >'(Dfjffi^- v ?tfti/^ 3— tc'a 

• ^-r-tyxiar-^^-^t, t^T©ii^ 
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T*59> T^T©M£tt#ii:&§:3y-ry , ym?)§lttf 
[0 19 0] (17) B^§fk3 y-r yyair-* 2 (y 

3 y 7") 

i/ a vfy- a i o o ic&vzm&mmtimjtzts 

i/3V?V-^ \ ooii, Bg^fksy-fyya-r-^ 

(y 3 v zn tt^-ifwm 200 icmmt 

[0 19 1] Hf^b^>"ry^Sir-^2 (v'3 7 7') 

©$$£03 3 (k) tc^to Bg^knyryyar- 

2 2 (y3<y7°) Bg^ffkn y-r yyStg^Dg^TC 

D, a— *f®,%%mm- ^ 3 0 OfrSSIib/cBt^kn 

yxyyit-r-* (das) (0 3 3 (j) ©a- tf$ 

fgHE^-^^SilEB^S^I^^fcf 1 -^) , 

©r- 2 E*f-f 5->3 7 7*+>--A 1 0 0 ©«?g 

£2 (->3 <y 7°) Eti, y 3 >y 1 0 0 QftHNI 

mmmt, a-vmmB#->* 3 o o <D&rmuwm 
iwjft, a— »f«8i2oocas(«f«n*. &fc\ a 
— »f«»2 o o#a— 'VAfflmmmw. 

[0 19 2] a— ifWBBBEIJ— /< 3 0 0 AMI H 

^ 1 0 0 tfa-tfSBgRSE-*-^ 3 0 0*^6S 
ffi-r^Blf^knyf-y^Sir-^ (DAS) tfftEftiH 

Uci3 4 (j' ) ©ffiBSfkbfcBg^bny-ry^Slx 
-2 (DAS) ^3 7^-/Vl 00 

W\ 03 4 (k' ) E^TBg^ffk^y-ry-yglr-^ 
(^37^) *a— »fWBHc2SftM-*. .-Tftb*. 03 

4 (j' ) fc^-rffiBS^LfcBi^k^yr y^SIr-^ 
(DAS) Eys y7°tf-^©S££tt*nbfcr-* 

E, i/s^^wqoooMIlft^ a— if« 
SKiiW--/*3 0 0*D^IJiaSEW«%StfirUTa.— »f« 

§§20 otcaswrs. 

[0 19 3] (18) gffx-^^SE 

y3 77*t-/q oofre., Bf^kn yfyyif-^ 

2 (y 3 >y^) *^Lfca--?«S82 0 0tt, Bg^fk 

3yfyyif-?2 (ys7^) ©^fiEffiS^HfTf 

i»o COMIB, JfeEBWiLfcHl 5©$aS7a- 
^^©SaST-fetK a— «f«S2 0 0ti, Sfya7 
1 0 0^65MBUfc-y 3 XO&MMME 

^#<D^|iE«r^5^ (CA) O^P^SIK p C AfcfflVT 
HP b, %EftMftfiEf3Hftfr 5 fl5t 0 tB b y 3 -y 
^10 0O^W«KpSH0P*ffll/^TH3 3 (k) E 

^-TBg-sfiknyxyy^x-^ 2 (y 3 y 7 s ) ©m?w 

S<O^II*^tTl-?) 0 S5E, a— ttfHHRffiU— ^3 



0 0 ©^ISSiHfiWOfcifr&fgfTJS (CA) ©&HSIK. 
p C A*ffivvrHfrU &E&IB8MElJ»fr&IR»>ab 
fca— lfflKBKIiE-9— 3 0 0 <0&HJ«K p D A S 
t,>T03 3 (j) E^-fBg#{k:3yry % yglr-£2 
(•>3 7 70 E^Sns (11) Bg^ffkn yryyltr 

(das) comz&imznft-rzo zzic &se 

)SbT03 3 (j) ©BjHtfbayf yyf*-^ (DA 
s) rt<DBg#ft;3 yfyy 81 i (ys-y^i) fc&SEf 

[0194] (19) m?im 

Bf^fk^yxy^Si-r-^ 2 (^3 7^) E-^fnsi 
aoftnttK p d e v-pBS^kstifeW^kn^ryy 

SI : K p D E V (Kc) *@B©IB!EttK s D E V*JB 

^t«»u sse, a— mm<DU&m k s to%« 

i/>TBg*f{kbTBf^k=i y-fyy® : Ks t o (Kc) 
££$bT, Ctl*a— «f«»2 0 0OlB1*¥SE«Htt 

■T5 0 n y-fyy ©ftJfflB#Efciu Bf^{kn yf yygt : 
K s t o (K c) *&#8IK s t o%lV>Ti§lT3 

y-r yygtK c*3it)tbbT, iRtxUbfcny-ryySi 

Kc^ffl^T, Bg-Sffkn yf y>y K c (Content) ©81 
^J&S^frU 3 y-r y 7 (Content) £H£, Hfif 
•T5o 

[0 19 5] d(DJ;5E, S*Effl tf;l/2 E*5V>T 
(4> a— »f«»2 OOt a— lf«fflSME1?-- ^3 0 0 
fc0M-ett7*-*083Mft<3j!tfTStt-f, a— tf<gj§§2 

o ott, ->3 i o o ^cDdg-ex-^Sft* 

[0196] [1. 2. a^yryyBBfg^-r/l^CD 
a^flW ^E, 03 lE^bfcS^nyryyBBff^r 

;i/ 2 <^)«Js!^©s^gffyEov^T»^wr *. 035 e^-tp 

i:SHM-9"-/^gltfcWe*4 0 ->3 7 7*-/<l 0 
Ott, a— tf^f§2 OOA^^nyry-yPAS^S 
ffi-rs^ a-+f , ag§2 0 0t;:Wr5=iyxy < ySBfmi 
Effll-9— ^4 0 0*<*fif"r*. aM«*a-ettv 
flt*Hfr -T § x y r ^ r-f M-P©ffiSBIE*ff * t>-f, 

5o b*^b> S*^yry > yiBfS J &f f ;i/2|pl^ xyf 

[0 19 7] ->3 1 0 014, a— »f««2 0 

0 3b>6©»>JI*f-^**fllU r-^O^SE (03 
5 ©MS (3) ) ^rtT^-^T, S^r— ^cDE^14*5S 
Hbfdt, Eflt-^4 0 0K*fUT, nyxy^lSHfB 

s*oss(B*Hff (03 5 ©sag (4) ) fiflt-9- 

-/^4 0 Oti, ->3 7 7*^-^ l OOWCnyryy 



^{fcny-ry^^Klfl (03 5 Mi (6) ) 
[0 19 8] a— 1f«g|2 0 Ott, Effi^- 0 Ofr 

5., fWfcay-ryyfcgflU T-$mu<o&, ore 
{teyT-yy&fc'r-zimmyr-rtA o otcssfl (0 

3 (8) ) f3o EfflH^-M 4 0 0 fi» Sfllr 
-**IE©ffc a-1f*WBtt1f--/*3 0 0fcttUTW 

yT>vMfrt>tfrx.m%*mm (03 so^a (1 

0) ) T5. 

[0 19 9] a— >< 3 0 0*flEflW— 

4 o ofrtb^mt^yT-yvMr-ti (Efi-tf-^) ts 

[0 2 0 0] ##»43^T«, a— yKKStt, *S5B 

Ag#*am u EM^-^eBg^ftiayxyy^g 
Mtfr^ig^i^ftay-ryu'SiSrgfiU 

[0 2 0 1] i/3 7/D--^10 0li, ay^yyif* 

^mmt^^^yy-yyMM^—^. y— Aay-rv 
vzwmt%7-.L3y7-yyMs-y--'^ «><?&a 

Vf-vySa±f*fc*S«*©E#tf--><fc:fcf LT 1 o 
3 >y / Wa— iflWfrBOa yfV7g*£ 

SrWaf 3 BBffit— / a yf y y Eflgjfc* JMfSt 5 
J:t), mif* a— if 1iiii:-> 3 ^^-/^i^r^ji 

{iT?S5fc46, -fy£-*>y h£<£5tf* EflKJ-->W 

[0 2 0 2] *HSfi«T«, ffi5BSEtf£l&S*U g£ 
«SE<0#fc*»)» 7*-*OIEM§te*»R1-**a3Ii:Lfc 

[0 2 0 3] 0 3 6U\ E3 5 tmffii/By7y-'lcD 

SBBE*#n&Lfc«jSTfc!>, J'h y 1 0 0 

li, a— tfS882 0 0fr&©aVxvyJ»A®*«:£IB 
U »BWE*fJ«:5. a— *f$g§2 0 0lc*tT5ay 
fV'ySIttSfi^- ><4 0 0*^f-T5o 03 5<D$ 
/i)ci:g&3;&{i, y 3 -y yif-/<! l 0 0 A^BBffilf-/^ 
4 0 0£#LTayryyE{§g*£&{§-£1\ a— 9 s 



Ifffl 2 0 0 2 - 1 4 1 8 9 5 

«MfflW—'t3 0 0*1 BEfi-9— 0 OfcttLTn 

[0 2 0 4] ->3 y/t-Mi 0 Ofi, a— 9»«§82 0 
0fr&OJlAg#7*-**»IU r-^O^SE (03 
6 <Dtm (3) ) =Ht£oT, B#7*-* 

{fcayryy®-r-£ 1 (->37^) <D3S€fcllfT (0 

3 6<DJttS (4) ) fSo a— «f«SBBE-9— 
M3 0 0{±, (0 3 6 ©Ml (5) ) £fir 
&oT, g#7*-*<DIEysttfc«BLfc&, EfflW--/< 

4 0 0KWUT. 3>^yyffifllS*©aSfll*llff (0 
3 6©©g (6) ) -TSo E#tf->^4 0 a— If 
«&BEU— ><3 0 0*»5O3yryyEffl»*7*-> 
*8MEU EStt#6tfg<*nfci§3\ a-«fM§2 0 0 
KftLT, nyf>7f-M-X 4 1 0^P>^t)ttJL. 

rc^mt^yryyzmn (03 6<D$aa (8) ) f 

[0205] *®mas^Tit, a-vwgamv-rt 

3 0 Oti, EfIlf-^4 0 0*->5)©SicDAHtA^S^J-X 

mi, ->3 7 7*U--/q o 0£*fLT a yfy \y»JAg# 

&5frS*M9i$^fflatfRJtifc&3. DAS AMI 
+r-/W)&{Ix-*£&iiEL&<T&,£<&i3s ®S© 

^fk* v 0n§c 

[0 2 0 6] J-X±> SiWUfcJ:3K» *^coay7 L > 
yEflMBfiKtintdr. a— tf&fHi, Vfemteyr-yy 

Kc (Content) ftfttt. 3>iryy*iJfflWf?g&«C 
oT, >>3>y^-/W> a-ifijtgtcWLT, a— *f 

®mmm-/vcmm&?3yTyv*%iftL, 3>f 

T't=5:v\ a-1flMltt»-/<B, a— m®Mm 

• 7^tyxflf-^^-x (06» tc, -r 
^T<D®*Ht*^®a^lltTL/'c3y-fyyisi*)?|trt 

/wrUT* ») , is^snfcayxyyixtigitsrJBS 
->3 •y7'(D^ffiatcfct>T§®5n/cay7 1 y , y 

nyfy70lffit > ->3-y^ a— «fflMI 
[0207] [2. «?f-^-y h^fUffltfcayr-yy 

Effi-fc-r;!/) a-iftiSai/T-y^ofiJffl (H» 
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[0 2 0 8] 037 lcW.?i->r y h fc»-3< #Ji8B#* 

#1»$£teaiL/'cmxx'7--y h*m7lr%*tr'y h«fr 
■9—/^ (T I S : Ticket Issuer Server) 6 1 0, 3> 
rW)«A±*4:**a— *fW§ (DEV) 6 2 0, IE 

(D A S : Device Authentication Server) 6 3 0,3 

y7-yv<vM%*ft& : i^>7-yv'fu/u# (cp) 

Woy&MV— '1 (C P : Content Provider) 6 4 0, £ 
6fc, *?x*v hKS^T?gB**&0»&«©SI& 

Jaa^T^^^-y (T E S : Ticket Exc 

hange Server) 6 5 0%3E.lMl&MMtt%c, 
[0 2 0 9] @3 7 03yfV 

yEif^fAO^'!' r-^fr+J--^ (T I S) 6 10 
<D«|JSK*H 3 8 t^l". x^-y h58ff9--/<6 1 Ott, 
a-tftt8g6 2 0fr6©»Ag#&3ttW3\ WAS* 

[0 2 10] x-r-y (T I S) 6 1 Ofi, 

mx if 3 y r y y IK!55toa— tfasoifflij? £ 3 yr 

y yliBUx, ^ yf> y»ft»*wi6^»jTWi"r &x 

a— fftt8§6 2 ofr&03yr>y|»Ag#«ttE, x-Jr 

[0 2 1 1] x3->y h5£fTSgx-*"<-X6 1 2Cf 

X6 l 2ti, f-5r-y h3Wf9— /W3yf-yy*05l* 
IBAflSWfcfSfT Lfca--»faS0ll9ff?3&*«B I 

nntzmc, uyf-vymwamfrtLxz.'-v 

^3>7^>' > ycDlSgiJ : ?T^-i.a>'T->' > y I d, ?-y-y h 

ffl*»5xyf-ff^, 0g*.t£*fMttff* 7-Ttyx* 
)Ws «a#, 3>x>\y|I^ia&^©I»2:LT 
©x*v hfijfflyfcl D, &x<T-y hfijffljfel DC«)St 



OtcfcitSf-T-'y h5£rr, IMICXf-^X^St 
Xx-£X<D&fit$B*&o 0 Xx-*Xli, |ftit7PtD 

fc stun r § # 3 y r- y v (owl K> § 1 1 k # 9 ttfto&iQ 

[0 2 12] x^-y 1 0<DftiJffil#©6 1 

3«, 03 8ic^f £-3£Bt«i¥ia, jif§«aa¥S 

1 OCOfBffiSi : K s T I S, x-y-y hfgfrtf-— /<S6 1 0 
O^I»«iEW*C e r t_T I S, ftffl0tfEfttt®$SfT 
*8i?**^M«IEK#afTSkLTOBiE^ (CA : 
Certificate Authority) CD^HflSlK p C Atf £5 0 
[0 2 13] $iJiP^|g6 1 3 ©$tfiJtfi, 5fcfcBl4*/B^ 

jSWfflaSfi (CPU:Central Processing Unit) , R 
OM (Read only Memory) , RAM (Random Access Me 
mory) , S^S5, A^SP, i3H¥&, 3HI-fy*7x- 

[0 2 14] (3— VWiffl a-lfHW (DEV) 6 2 
Oti, H 1 0*/8tefctt*a-1f«», 07 

5Bg^SI^©Bg#i!!iaffir-^^bT«, a— 1f«»© 

mm ; k s d e v, zL-ifm&to&fflmuwmc e r 

t_D E V, &Mtt^tt09BfT«IHT««&lllttEIII 

UTOUSE^ (CA : Certificate Authorit 

y) o^BlitKpCA. ay^yy^=L-^m^<Dmx 

i:tT31ffl-r5{«#SlKs t otffc*. 
[0 2 15] |3 7 0fv-7 h^a^^T-rs^x 
rAlcfeWSa- tf«g|6 2 OtDW^SWAtax-^ 
^-Xli, f 7-7 HIil%j#of-?i)Si:S5, 

»Aff3r-*'*-X©r-*«tf*H4 0teiK'r. M 

ASax-^^-xti, 3yfyy%L*) 1 }\%*mfit5 

mc. 3— «f «HBT?4ia5§fTf 5 h 5 Vtf ^ yay I 
D, ^0?lt^3y-ry > y©i{SiJxT-fe53>'xy > y 
I D, ayf-yyBJOgiSK^x^'y h^%f7t5f 
^r-y hmrWvmW&V&ZI-'rv h&ftWl D, x^ 
•y /<6 1 0*'Kt5fy7 h»f?8fflN 

o. , x^-y hiaSfltLfc^oaSflMtxyx-rx-fClS 
JJftLTCfv-? h Eiffel D, 3.— «f«8& 

43 » i. 3 y x y y ® *) ? 1 $ saac>x x- ^ x X 

t-z zommm^o xx-*x&, 

k * 3 >"r > y t) ? 1 * t 3 $$c©$aa(Dis 
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[0216] (a— vmftWMv-'V 3.-*nmmt 

V—/* (DAS) 6 3 0«> m 1 <Dm$.K1Sif%3.— tf 

^fOo a— »f«HgEffiE-9--/^6 3 0#t&*rrsiB#>i3F 
<9Bg^$aaffl-r-# t UTtt, a— IfBISBEit-^ 
(DAS) <DlBfg£ : KsDAS> a-tfafflRiEtf- 
^ (DAS) OftHMHiElHftCe rt_DAS, ftPNI 

MM (C A : Certificate Authority) CDi^tK p C 
A^$i5o 

[0 2 17] i3 7 0f^T7 hWI«J«**R'r5'>X 
rA»cfe^*a— «f««BfiEl*— A6 3 0<DWT5v-r 

$$£04 nc^-r„ ^-r-teyxwax-^-Tii, 

3yfyyt!)?lf^i:a- IfaffiffiSEtf-/* (DA 

s) 6 3o©itfT*«irafcfci;Trt»&jK-r**ra!M 

ID, 3^r>y9J5fl**SlfT-r*IRK:, a-1f*ffl 

>fy7©lffiijf T'SS^yfyy I D, uyy-yvm 
0?l*E#V^'5r'y h^rfTS^'y h«fx»OlW0 
^T-fc-S^-y h«fTf*I D, f-fry h^W-/^6 1 

0jW8S-r*^y MSfffiftaNo. , a— 9 s 
<MMHEtf-/< (DAS) Ki5tt«3yf-yyfc95l£ 

r- * X (4, ft&TPWcI^-f 5 3 V r > y £>® 5 
3l*tc#?lfflSoftBl(OJifTK:jSi;TMI(f«ns. 
[0218] (BBfl+r-^) El 3 7 <03 y*rV' <k JW& 
XxAOBBM+J— ^6 4 0<D»S:EI4 2£*fo Eft 
■9--M6 4 0&, tfiJ^tfny7 i y > y7 p n/W^ (CP) 

-T^ffcLfcBg^^yf-yyr-^T'&SK c (C 
o n t e n t) £u 3>fm-K c£a— 9*t»g§R 
ll-y-— (D A S : Device Authentication Server) <D 
£mM ■ RpDAS T'BgmtLfcBgmt^VT-yy*- 

KpDAS (Kc) ^MLftnyfyyf-^^-x 
6 4 4£Wf5<, t%mt=i>7-yv7 1 -z , v&z 

K c (Content) ti. igtfcaVf ^-fi/F 
n3 y^y y i^J^T'&S 3 y-ry 7 I Dtff#n£fu 
nyf/y I D fcS^Tt^Mte*«i«*J$-D 0 
[0 2 19] B2€-9--/^6 4 o«\ £&£3yr-yy© 

Kffgax-^gat-aEfrsa-f-^-xe 4 2 

*WTSo IEffSa-r-^-7.6 4 2«\ *-5ryh* 
x- * «bR i: £ * „ lAIIf- 2^-7 

©7*-*«wi*Bi4 3^1% safSfax-^-xe 

/<6 4 0«<«3£-r«Efl|-9--/ , 5jflaNo. , &03l£*f 



y<Dmm*immw&tLz<D3L-ifm®i d, nyfy 

H9J?T*&5?-*y h&fff* ID, h«frf*tfR 
StS^yhiWlNo. , SSfc, EOT- '<£ 
fctf § n y f y W U 9 5 I tflsa^x-r- £ 7 7 r 

mt 3 #3 yf yy <om k> 3 1 1 eff 5 tt*©*aa©Jiff 

[0220] s&tc* iafi-9— ^ 6 4 0 a, nyfyy 
r- * ^- 7, 6 4 4 6. ©Eft 3 y r y y ott tBiaa, 

«t)5l* tc#dEfiWar-£^-7.6 4 2KWLTB 
«r«WD§l*7*-^04<aftWl, a— lf«« 6 2 0 ffi 
fcOfflflM&S, Sfflfia&SfclBLTOf*-*© 

#ffla^*nfT-rsa!H»^a6 4 3**1- sow^a 
6 4 3ii, 04 2 fcsvr <t 5 tBg^aifflm iififtaa 

^jaaya^A, iiftjaa^o^A^fgifiLfcny 

tTi-^lC<J:oT«^«n*o 6 4 3 CDBg^fffl 

iiisnTvs. mm~^Q 4 oAwrspf-tsi^ 

Bf#jaaffir-^ i: LTfct Eft -9—/^ 6 4 0 
i:KsCP> BE{i9— ^6 4 0©4ifflSffiE?Mf C e r 

t_cp. ^mimm^mmmx^^mmmm 

WnMtLXcyWMWs (CA : Certificate Authorit 

y) ©&BB»KpC A#&5„ 
[0 2 2 1] $1^136 4 3©«li, fttCil4^ffll/> 

?SSJaaSB (CPU:Central Processing Unit) , R 
OM (Read only Memory) , RAM (Random Access He 
mory) . Wr^ X1z®>. Ett^S, fflfl-Ty^7x- 

[0 2 2 2] (f-5ry Mft^*-/^) H3 7C0nyry 
yEfI^7.T-A©f-y«y (T E S) 6 5 0 

<0««*H 4 4 K^-T. A 6 5 0t±, 

«t*&xyr-Y f-f ^ Btt^y >y h*3«U Sfix 

[0 2 2 3] f-^-y hift&lf— 5 0li> ny^yy 
ffiD3ltt#35Sf?f-^-y hlcS^<^©acDSax 
-^^ ! Sa-r§^'7--y 5 2* 

frf£> 0 2?.tc, §xy-r^-r-rfr?)©§fi^^-y ht& 
IE, h»&effl7*-^^-x©WJ», Sxyf^ 
r^tOilfSftia, #iifIfiQatCl^L,T(Dr- 

[0 2 2 4] f-^-y hm^Wax-^^-X6 5 2<Of 
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X6 5 2&, f-fry htefrt-'ttfiSfal-try McfSi; 

i* I D, ^v"-y h«fT*— /<6 1 Otf^tTS^v-'y h 
%fTSaaNo. . ^-Jr -y McScK $£&8S, nyf> 

«H8id, 3>f-yy«io?i*iS&iiff'r*iBic, a— 9* 

v"-y r-$&+r- /^c felt 7.x- *X 
fcttWr 5 y r y y ®« 0 5 1 * K# d $!&©$aa<D 

[0 2 2 5] f-y-y h 6 5 0W\ 

fry h^SSr-^^-X6 5 Z<D7*-2£M, Mff 

nti^o ^-y mww--^6 5 ojwftw-rsuwsi 

5 (XOiBffifli : KsTES« *"5ry h«^— /t6 5 0 
O&MMMMI* C ert_TES, &M«SEW*0«fr 
«M?*5£B8»gW!8£fTJafcLT©t^ (CA : 
Certificate Authority) K p C A#&S„ 

[0 2 2 6] $HHM£&6 5 3©«J«tt, $tefcH4*ffll/'' 

iSg&a^H (CPU:Central Processing Unit) , R 
OM (Read only Memory) \ RAM (Random Access Me 
mory) , AftSB, £tt¥Sk. aii'f>'27x- 

[0 2 2 7] [nyry^iSASaal 2fcfc, B3 7fcR 

— !f«HI§fcf8#U f^-yHLi^Tayf^yfi^ 

3 7CD#-5§ (1) ^e. (3 2) ©JHtfiiajB'Jtff-rSo 
[0 2 2 8] (1) fflSSBIE 

3yfy7%lALiv fctsa— tf«t§6 2 oti, 

v-y h%?7-9"-/^6 1 0 fcOH-pfflSBIiE«ra*ffa: 
5. ffiSSSESlSti. 01 2£fc«:01 3*ffl^T»W 



[0 2 2 9] (2) h7ytf^">3>I D, »AS*7* 
(3) HASST-^aSfll 

hBfrfr- ^6 1 0 fca— «f«S6 2 0H<D*B5 
KMffi&to+&£* a— !f$8§6 2 Ofi, nyfyw 
J»AS*^-**»f 3 0 »AH#-r-^©«<a*H 
4 6 (m) HAg^-^tt, nyry^ffllA 

cDg^jcTifeSa— tf«8§6 2 OOWW^fcSaiSI 
BD5lt©|«3!]?i:LT, a— tfKn 6 2 0 <DBf ^ 

yyoUB'J? tLT©3yrvy I D^'f-^^M 

[0 2 3 0] (4) 3«r-*ttlE 
04 6 (m) fc*tltAg*-r-££a-+f$§36 2 0 
jb^SMILfc^'y M8?r9— ^6 1 0(4, gffix-* 

ofciBaafcssfr-r*. amount 5^01 5 

[0 2 3 1] (5) sg&saa 

(6) hftfi 

(7) hSSfli 

§i^tcw-r§n#» «^y-y h^T©a*^ff 

— »f*88§6 2 OtcJMfS^nSo 
[0 2 3 2] W^y-y hO«)«fif!l*H4 7t*-f. 0 
4 7 (A) f±, «?^^-y Hc»r3 < S&BEiWt 0146 

S) Saa^^TWtiWS. 2 a— if««A^6^ 
v">y h5lff-9--/^cWLT^fS$nfcBaAS*7 i -^ 
(0 4 6 (m) #J8D *^tr„ ^?,tc. f7"7h 

[0233] 047 (b) it, m=?r>rv bicm-3<m 
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j«"PS!>, f-try HfflflMcl D*^«» (l~n) *S«J 
^ft^ftO^-y hfUfflft I D«e, «?^-y h 

icm-3^-cmftznz®&iz^t&m& i ~n *T*t&w 
[0234] 03 7<DmmmT*ii.. f-^-y y-mjv- 

(CP) m<Ofi^^yht, ^-*?®&M®V-^ 
(DAS) %<DW : ??-'r'yb%mit5 0 CftS©*-* 

*je*fc^-^;l/**L, a— «f«j»^6©3>f-^y 
8»Ag3£K#*n5 3y-r:yy I D £g-3VT-r- TVV 

•y h*4<aLT3f^T-r«. 
[0 2 3 5] (8) gflr-*tftflE 

1f*Hi6 2 0H\ f-^-y KD*IE«lS*llfTtS. ccd 
tttE&Hlfi* flcfcfKELfcEll 5©W17n-i:BH«fl!) 
»c?&D, a-1fl»6 2 0tt 4 St^v Mgfrtf 
-^O^HMWElB»0«MBE*»fT» (CA) O^BMIK 

fc^-y /W>&IMIK p T I S^ffll^Tf-^ 

•y h©8*«ttE*HfTf'5. 

[0 2 3 6] (9) *§SBIiE 

(1 0) *?^-y h (C Pffl) 
&fC3.— tf fi§g 6 2 Ott, Efctf-^6 4 0£7?-t!7. 

a— 9»««6 2 Ott, EAT?- 4 OtCftL-T, Eft 

f ^7 h (CPffl) ^mffifSo 

[0 2 3 7] (11) g»r--*tftBE 

(i 2) ng^b3yr>yfe<fcifie^fb3yryy«3as 

ft 

Efttt"-A6 4 Ofcfcl^T, S^f-^-y h (C Pffl) <D 

EfflTO— ><6 4 ot±» BS^fknyf- 

tcd^mt^yT-yy ■ Kc (content) <k, nyfyy 

: K c fca-lfafflBliEtf-/* (DAS) 6 3 0 <0 

^Stt?Bi^kL/ceg^{k3 yy-y^mf-^ ■ k p d 

AS (Kc) *$trr-*T?&5o 
[0 2 3 8] (13) gftr-2$IiE 

(14) tlSgglE 

(15) tf^-yb (DASffl) *5j:t>*®*HtA^S 

Eff-^-^6 4 0^6Bg^k3yT>y*J:tfBS^ft3 
yr->y«**flltfe3.— »f«IS6 2 0tt, r-*©tt 
III^HTtSo f-*8WGE& a-if«ffl6 2 0 



iKmifcitfT-rs. ftwm&i&SLr&ts a— tram 

6 2 0ti\ 3.— «f «HBBE"9--/< 6 3 OfcttLT* 3- 
tfWBBIE*- h (DAS) fejtftt 
*»ttfr*.g#*2&ft1-5. afrtf*»AB*l4, JfcfcEft 

ifeH§#{k$n/c3y-r>' > ysiK c-e$>5o Bf#fk3> 

fyytKpDAS (Kc) *a— !fflHSO^HI«K p 

de veBg^kbfe3y-ry , y®, •f&fr'fe k p d e v 

(Kc) 4:T£«ra*g#r4fc0T*fc9» m 1 £fflv> 

[0 2 3 9] (16) g«x-£$tiE 
(17) Bg^k3yry , ySIAHtA^©a, a— 
6 2 0A^f?^7h (DASffl) fciWUfcsy 
ryylKpDAS (Kc) frttfr*.g*£g{iL/c3. 
— «f»8MME1Jw< 6 3 Ott, ft^f-fry h (D A S 
ffl) , Bg^{k3yr> , y®*HtA^S5)?^IE®a^^ 

5 4:, a— *f tHHBE-P— A 6 3 0 3yf-yyffl: 
K c Sa—tfWBKSE-y--^ (DAS) 6 3 0 CQl^St 
K pD A ST'Bg^fk l/fcr-£ : KpD AS (Kc)5; 
a-1f«»BflF9--/< 6 3 0 (Dfflsmm sDAS 

UT3y-ry , ySlK c£fl!tf#u S^Kayf-yyUK 

c *a— WBS*4aMI : K p D E VT*Bg#fkbfcBg# 

{t^yj-yym- k p d e v (Kc) ££jjJc-f& 0 

t>%, KpDAS (Kc) ^Kc->KpDEV (Kc) 

[0240] (is) ^mt^yy-y^mMiE 

(19) Slfx-^^liE 

(20) ffiMf 

a— »f«jSK|E-9--/^6 3 Ott, «^tt*»*KJ:04ia 

Lrc^mt^y^yymKpDE v (kc) %a— «f« 

§§6 2 ota&flrr*. a— •fnaBint- /^6 30*^ 

P., Hg-^fknyxy-yglKpDE V (Kc) *SflLfc 
a-tf$#§6 2 Ott, 5Mlf f -*««iEfflai**ffL, 
%m. a— 1fWB6 2 0«, Bg#{k3>7 1 y^SiK p D 
EV (Kc) *i5©8MBMKsDEV%ffll/vrara 
L> S^K, a— «f Ks t o*fflV^TWH9 

{tbx^mt^yv-yym- k s 1 0 ckc)*£j#l 

T, cn%a— »f«8i6 2 0OE1t¥aK*lW-r*. 3 
yf-yy©f!lfflH#f£{4, Hf^{k3y-r> ,, y® : Ksto 

(Kc) ^«#®k s t o^ffl^TlfLtnyfyy 

iKc*«Dtfil/T, U0tHL/fc3yry , yaiK c£ffl 
Iz-'T, Bg^kny^V^Kc (Content) ©^fiaS!* 
HfTU 3yf/; (Content) ^rpfSfe, Hff-TSo 

[0 2 4 1] (2 1) fflSBK 

(2 2) m^fry b (CPffl) 3^1 
EflW— ^6 4 Ofi, a— «fll»6 2 Otcflf 3Bg^k 
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#LT, Eft U--^ffl©«? -y h (CPffl) *3Sfl| 

[0 2 4 2] (2 3) Sffr-^^R m&W£ 

5 OKiSVT, »7^-yE- (C 
Pffl) ©tME#£7U x-^SHOfct/VESft*?* 
fry MffcSfcWSTSfc, ^^-v /<6 5 0 

it. gfLfct?f ^7 h (cpffl) (cn^Tinaa 

EflW-- /^flt^nyryyT'n/^^ (CP) © 

(CPffl) JcRfi«nfe4«*a— tfWHOMfci— 9* 
<DP«^6180»AS«Kli:tTfT*>n*o fcSWiSE 
{c^^ <y hf§fr9— / Wa— 9*>b> 6 <DM?A^S! 0 & L 

yyfut^df (CP) <D ! gmu&ic3->rv bKWifeZ 

[0 2 4 3] (2 4) »a»su#-MB© 

f-^rv 5 OKfc^T, Sff v-y h (C 

6 5 0«> BfflW— /<6 4 Ofc#LT»&*Eiffi»A,J£ 
[0 2 4 4] M®IH-KO«»04 6 (n) 

llgiJ?T?*5^y hft&Saa ID, 9^>y MC»-3< 
S*&0g#*fTfc 9« fcg*±{*fB53iJ7 i: L T Oft* 

^y<y h&firf* ID. ^<y h«ff9--/<6 1 

«ui557B«<c>7 f -***ru ens vm&v 
-/*6 soomw&tffflrasnso sat, gs^aas 

[0 2 4 5] (2 5) gff-r-^^KE 
^•y 5 0frt>m&9mi'X-b*&m 

LfeEflW— /<6 4 0J4, ft&^Utf-hOtftSEffia 

y fu/U Plctt? 5 3 ^f - yyw. t> 5 1 1 fc# 3 »&E 

##557 l ft c t mm* nso 

[0 2 4 6] (2 6) IBSSSE 

(2 7) W^f-fry h (DASffl) £41 



(2 8) gffx-^IL il&ffii 
(2 9) »&Kra!U#-HI» 
(3 0) SflTr-**!! 

a— tfWgBBSE-y— ^6 3 0tfy-7 h»&tf-/*6 5 
0 fcOratt5V>Tfe^ ±a?<DE{§lJ--^ 6 4 0 fcf-Jry 
E-&&-9— ^6 5 0ffl<Dmm (2 1) ~ (2 5) £1181 

omcni??*-? h (DASffl) tcs^TH^n 

[0 2 4 7] (3 1) ffiSUSE 
(3 2) Mffll^-hlSS 
(3 3) 3Mtf*-*8«E 

*"5ry hft*-9--/^6 5 OMu #xyf-ff^^ 

x-fx-r^fttfeii^oft^saau^-b (04 6 

(n) W £^-y H$g?r9-- ^6 1 OfcjSfgfS. 
f-y«y h«ff9--/<6 1 Oit, f-*r^ bm^-^6 5 
0 frZgm LfeMHb*- h O^tiE^^fT L, «fT 

-So 

[0 2 4 8] (£*Kgli:fettS*T--*X»») 03 7 

Sbef5o Xf-^Xtt, WAtfH 3 9 few"*"*-* v h 
Sgffgar-^^-X, EI 4 0 ©a-tf«ffl©J»Aea 

a^n^c 

[0 2 4 9] $1*, f"7">y 1 0©X-r- 

*7W£OV>T, 04 8^fflV^T^-r§o fv*yh 
^7-9—^6 1 0(i, a— 9*18886 2 Qfrtb<D^yy-y 
•y»XS*x-**S<l (03 7©ffiS (3) |C#j&) 

0tt> a— tf«8S6 2 OfrBOgffix-^fcftSEU 
fiEfc/3g*Ufc«-&(i. Xt-JX? rflHASttSSTJ IE 

5v>t±ini«i<oiaa, ddTHi, »Agw*Qa!%mjEiHi» 

[0250] xt-^x^ n»xaf*357j ic®^-rs 
2 oKML-zmT-^y b*mm (03 7<D®a (7) 

«:§®-r 5 c i: ic J; >3 , Xt^-^X?: rf-y -y MBfi« 
7J tfSo 5SfllJtS» (UX^VX) *5WHl/ft*»-3fc 



(31) 



^HS2 002 — 1 4 1 895 



i:f5. Xx-£X# rxfrv hE€357J T?£3i§£ 

[025 1 ] xx-*x# r^^-y vmm&T] \cw& 

bfcm-t, ML f-^y h»fr9— ><6 1 0f4, 

Otftffi (B 3 7 Ojfia ( 3 2 K (3 3)tW*5)*H 

fit?.. ttSEttasbbfeifr&tt, xf-?x^ rsiftn 

lIDSLfc*, JaSfctfifcU Xf-?X5; rffcftu* 
-hgfi&J&j fc"f*. f-fry h«fr»f-/<6 1 014, 

[0 2 5 2] *Ca- 1flt»BK , 9--/<6 3 OOXt- 

^xiito^t, 04 9*m^Tmwt% 0 a— if* 

»BS«-->*6 3 Ott, a— "fiagg 6 2 0*»6OflWft 

^wviKpDAs (kc) (83 7 0*13 

(l 5) fcfcfJS) tictTjMWIWJn*. a— *f 

«»&SElf- ><6 3 0H\ a-1f«HB6 2 Ofr&O*? 
(DAS) *£tf$«T-**«»EU MEIc 

— tf«g) 0!>sMittii«ffi£iaMit)Si/^tt, &a£ 

Xtf rS|gfi^7j TfcS^fCO^&X'rvT'fcji 

tfo 

[0253] xx-*x# rgtgfg^Tj icii^f s 

fc, £lc, a— *fflHgffiSElJ--/<5 6 3 0(4, 3Vf^ 

(S3 7o5aa (17) znii 

U 8mtfr*^a*WL/ci§£ta4, X-r-^X^: 
[0 2 5 4] Xx-^Xtf r»jWtfr*.557j tcS^b 

*S§6 2 0£#LTBg#{k3y7 1 y > y®'r-* (da 

S) (0 3 7cD«aa (18) (Cftft) U 3— If 

«S6 2 035»»&Ov*-^aflllfi«F*Sflir*. T-*§ 

ftJSgfcSffib fc#&l4, Xr-2X£ r^{f^7j 

^c«, saasr^-tsfr, &sw4iwi$i0saa. cc 

■pi*, BB^k3yx>y»f*— * (das) ©gffiffia 

[0 2 5 5] Xx-?Xtf TOfB5?7j KW&lT% 
t, a— tf «ttllg|E-9— /< 6 3 0 {4, f^yhi 



&tf-/*6 5 (DASffl) * 

&{f (03 7cD©a (2 7) icttft) U f-fry h&& 

[0 2 5 6] Xr-#X# O-Jr-y htft&S^Sfl^ 
7J £»f5i:, 3-- !f WIBK-9-- /< 6 3 0 
tt, ^-y hSS^-tf— /*6 5 0*»6©ftft*Bll/#-h 

*»iu ux-hcommm m3 7<Dnm (2 

9), (3 0) K»J6) **frr*. *(WE»cj**Ufc» 
*tt, Xx-?X* r«|^Kil/*-h»l367J ic» 
36 U ©af?7£fS 0 U#--MIMEI«:J:»>IESftU# 
- h-p**i:OipJ3£^ftStift^-3fc*&tStf±» saa 

3 y r y>y m. *) 5 1 £ &lcMftt 

[0 2 5 7] ^ClSff+r-^ 6 4 0<DX-f-#X>I&£ 
OV^T, 0 5 0^ffll/>Tl«B^-r5o BB<11?--/^6 4 0 
14, a— *f«HB6 2 0^5<D«7^y-y h (C Pffl) ^ 

§{g (H3 7o»a do) fc^/s) -r^ciiT'jaa^ 

M^nSo ffi{fif-^6 4 014. 3.— *f«MB6 2 0A^ 

6©S€f*-^*«iliEU «WEfc:iaSiUfe»&t4, Xr 

tt. jaa*f±L, xx-^x^ rii T xy-y hgf§& 

«J fT5. Xr-^X*^ h£€3S7j T 

* § ©**X r -y y K it fro 
[0 2 5 8] Xr-2X# r«7xy-y hg{lyc7j fC 
a^-TSi:, ^fC BEfflf-^6 4 014, 3-1f$gg6 

2 0fcWLTBg^k3y-ry , y*5j;a*B^{k3y7 L y^ 

ar-^KpDAS (K c) ^ff (0 3 7CD©a (1 
2) icttft) U a-^tie 2 0^e.©f s -^§«fS 

-^X* rgBff^7j tc^SL, 7*-*SfflliS»©5MI 

l,H4[aHiC0ffia, CCTH4, Bg^{b3>'7 L y > y*5<ttfB§ 

^{k3y-ry > ysix-^K pda s (Kc) oigfttoa 
[0259] xf-^xtf rgaft^Tj tcsirf 

BB«^- ^6 4 0f4, l-'rv hm&V- 5 0 
K*fLT, tf f ^7 h (CPffi) ^fl (03 7©ia 
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m (2 2) fcftjfa) U f-fy m&tf-><6 5 0fr6> 

ttas u f»- 2 s«js«w)Sfli^a * ft&fr o fr® 

rem, »&*±u xx-*x£ ^ y fmbs 
co2 6o] 7f-?xtf r^^-y hm&mmmn 

7 J 6 4 o a, ^y-v 

U#-h ©UMBOS (03 7 0«H (2 4) , (2 5) 

x* r^jagu^-h§M^7j jciueu *agi*7 

fUJE tf& * ft & o *S£S? tt, $ag# 4> ±-f S *\ 
S*ffi£lII»K!>jf Lfc& fflS**ibU Xf-^X 

[0 2 6 1] ^CfC, a— «f«»6 2 0OXr-?Xl^ 
fCO^T, 05 l*fflV>TKW"TS. a-1f»ffl6 2 0 
£1\ 7*-4ryh«ff*-/<6 1 0£*tLTBtAg# 
r-**i8fll (03 7<Dffig (3) £*ffS) tfcCfcT? 

ymwffl&-£n%o a— «f«»6 2 0tt, ^yvmi 

■>t-^ 6 1 Olcftf i-ffAg^-r-^gM^OUX 

xyx^gmtzt, xf- *x# r$tAg*&fi^ 
7©ux#:/x£g{iT*£&</^l^«, *tta*4J±f* 

ft\ £5V>ttH«©fflg, CCT*«, MA£$3MEftlS 
ri8AM*&{I&#U fc-TSo Xr-^Xtf WAS* 
[0 2 6 2] Xr-*Xtf r»Afi«2S«^7j Kil^ 

ts^ a— «f«»6 2ott, r^ymm- 

^6 1 O^P., h£gft (03 7<D$flg 

(7) . (8) icttfc) U Sfllr-**«MDEt% 0 ^ 

Xt-^X^ nt?**y h»lSS7J fc^ 

3BD»0igtfe«» fflSfctfUkU Xf-?X5 r«7^ 

[0 2 6 3] x^-^Xtf r«7^^-v >§«tS7j £ 

6 4 OtCftLT, IW'y h£iSi§ (0 3 7cosag 
(10) KfcffS) U f-?Si^*>^*Sflt 



5c r-£gfibX#yX£gfILfd§£W\ Xf-^ 
»»!>jILfc«> ffiS**itU Xr- *X£ Tfl7^ 

[0 2 6 4] Xf-^Xtf T^f-y-y h&{i£S7j 
S^-fSt. a— «f «» 6 2 0 tt, BBffl-9— A6 

4 0^e>, Hf^ffcrny-f Hg^Htn y-r^\y S$k 

pDAS (Kc) *5MTU (03 7<D«ig 

(i2), (13) icmd znntZo T-*®mc 
rnhLtzm^t, xr-*x£ rgii§{i%7j fcaue 

[0 2 6 5] Xr-^X*^ raiSfll^7j fCaBB^r* 
*ic, a— 6 2 0 fi» a— tf$§§asfI+)--A 
6 3 0{cWLTS7^7h (DASffl) tBffcny 
fy7iK p D A S (Kc)4i3Sf (03 7©5ag(l 

5) IcWJiS) U 7*-*gfllUX^y^*5Mrr*. r 

imm<Dim. cz-vn, n^-^yh (das^) t 
sg^bnyxy^siKpD as ( k c ) (Dmmwmzm 

j5p*K*2S«^7j T*«5li^C(D*^X-ryy»cJi 

[0266] xf-^x*' r«*»ttfr*.®3isa&ffi357j 

W-A6 3 0fr6> Bl-^lbnyf-y^KpDEV 

(Kc) *SfflU x-^^K (0 3 7©©g (1 
8) , (19) tJtJfi) *Hfft*o x-^^ffiEtc^ft 
Ufcil^tt, Xt-*X£ r©2gft^7J icS^L, 

*«t»ihu xf-^x^ rsi2Sfl^j i:f So 

[0 2 6 7] WO-'ry \-®&V—/16 5 0©Xf-^ 
XS^fcot/>T, 0 5 2«rffli/'«T|fiW-r5o Mft 
&+f-/<6 5 Oti, «7^^-v hKJ:*KJMI«*ox 

yT-^r-^-h^on^'ry b*%m (03 7<D5ag 

(2 2) , (2 7) ICttftO -T5.C tT'SttgOT^^ft 
So b^-9--^6 5 Oli, §{if-y>y 

L> WBEfciKStiLfeW&ttx Xf-?X5; m^'ry 
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[0 2 6 8] 7.7— $7,1$ TO^f-fry 1-§«£E7J fc 

-MSfIt53yr>7yn/W^ (CP) coffSP 
feSi/^im^v^-o^Jc, IW^yf (CP 
ffl) tc^££n/£&S(£3-+^§3©§lIx-+f£>p$ 

hWttV-^'gMnmfrZ^yT-yy-fasU? (c 

-ssaa^tTtT^fcnSo $&$aa#rc7-f&i:XT- 

*X£ r&&ffld!sS7J fcRSU »&K13jBWC* 

[0 2 6 9] 7.7—2X1* rjftftJMKJj izMfetZ 
fry YW&V— ^6 5 Ofi, ^yh*3S 
{aLTtfcxy-rf r^fcWLT, ift&ifiaUjK-h* 
£ft (03 7©ffil (2 4) , (2 9) K*foS) U ft 

*X£ r$£u#-h&{B&&j fcfS. f^'^M 
•9— /<6 5 0tt. dcD^^^ttSai^ft^Vxy^^ 

[0 2 7 0] H5 3t^y bRfrf*fc«fcT3TSfTSft 

frp>?->ry h&frtts o l cWLT3yfy7lASf 

&5VHi«7v*-p$l|fcS^T^£n33.-->f 

LTSf^n§o 0 5 3 icvktmzHi, nyfyyfA 

ft^i Lt 1 , 0O0R»©l?^7hW>yh^ 

[0 2 7 1 ] 0 5 3<DmTH&* 3^x^78^ 10 0 0 

TcD^a >y LTOS/a y^filttfc LT 

3 0 OR, 3yry > ygefi<D>'7.7 1 Aj!##T'&37-f' 
-tr>-X*;l^ (a— tf««Sffi-9— /<) 8 0 3tf7^t 



yxmtLXl 0 0P3, 3>fyyHM (MB€f-- 

a) ^yry^iit6ooR^ ^n^ngfif 
[0272] a— mm^<omKg#z&mLrci-'r 

*»^fix Jtn^nott^'Jry h^afrf*. 0 5 3 

<oilt?a, 7-r-feyx*;u^8 o 3 tc*tr yx 

ft, 1 0 0 R©E$m&*K£bfctrep?-*v h fc, 3 
yf-y^S^tcWI-^nyr-y^^ 6 0 0P3<0^ 
<y h*3.— m%8 0 2KE«-f *. BmtZVm- 
■yMcfi, 7-srv h«fTtt©#&tf£fiRSft*. 
[0 2 7 3] a— tf&ggs 0 2«, 7f -t>x*;l/^8 

0 3, ayf yvmtt% 8 0 4 ^-n^ntcft®?^^ -y 
h*aiflW«. 7^r-t:yx^8 0 3, ^yx^-yil 

<t#8 0 4&, 5MBUfc«^^ry h**EUT^ 
fcf-fry h"efcSCfc*SBBLfc& Sgfir Wry hft 

«EUT*n^noEim#o«& (ex. jg#$aa> 

*fr-r*f-^y hO*ftttUW:» Mc»LT 
4fiK?nfcf-^y h5Sfrf*oaftOttiETfeSo *fc> 

[0 2 7 4] ^^-y hOjgffittTfci-riy-r 

yyfiM, ^-r-byx*;i/^tt7^y-y h«r#ty^ 

[0 2 7 5] 0 5 3<Dt.MT'ii, f-y-y h&f5{* (->3 
•y?) 80 1 S*t)3yf->y^©— »3 0 0P3»O 
iE©*?*-** h%«fT (f hftM-A) 8 0 

[0 2 7 6] cneoftH^f-^-y HOSfcfeftMKlJ: 

yy8!ff#8 0 4t4, m^^^-y h^a-+f^|g§8 0 2 

fcffg^bny7 L y > yi:, nyfyyiKc^^'i'tyx 
(a-ifliffiBIE^-/<) (D^HttK p D A S V 
VttmtLlttiltmtzyf-vym: KpDAS (Kc) * 

[0277] a— !f as 8 o 2 n yfyyMM 8 

o 4frib%ffiLrcz%mt3y7-yvmKpDAs ck 

c) ^m^T^'T-'yh (DAS) fcfcfefc, 7-<tyx* 
;l/^8 0 3 fciSffl-r*. 7^-fe>X^;l/^«, 

•y KDfcSEOfc, BgSf fk3>xy^g|K p D A S (K 
c) cDSaAHtA^aa^llfifU, a— »f «gg©^BBI| K 
p D E Veuy-ryyUWUmtL-C. KpDEV (K 
c) *fe«LTa— <f«HB8 0 2Ka5<fr*o ^.-if* 
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g8 0 2ti, KpDEV (Kc) £§B<D*iMK s D 

%r^y'ryym%7 : 'U7,icmmtz>m-&te, saw 

{£#§tK s t oT'Hg#{btT«#-r§o 
[0 2 7 8] ±j£Lfc£.ol£* MSfrttfc <}: -a T 

**fti:LTfi<S-9— (ex. ayfyyIlfHO 

HHtfta >fyyt flreffcn V r y y**a-1f «BIK 
SSfflU ?'C-t>x*;l'? (a— 9*BE««) 

5 c UTBS#fk3 yf yy«©^tt*^*fr 

[0 2 7 9] [3. uyiUMy-'VcZZzyf-yy®, 

rcmm^=L— "fastens ltwsu p^©ehr* 

^^jE5|}cffiJ§prtii:Lfc3>'ry i yBB€yX7 1 Ate 
[0 2 8 0] 0 5 4 lcu?®tRi'Z7-L.*ft-oayTy 

ymi§Bm(D~yxTL.mf£*7skto B5 4oayfyy 

•^--trx^fi&d^a (SHOP) 90 1, 

i/a >yy+)--^9 0 lfre^yf-y'ygBftfcSM?" 5 

3.— ^fllgg (DEVICE) 9 0 2, SBtC, jEe3&3 
te1-5a?iK&tf-/<9 0 3*±«j#B*i:U py-r 

yy«1f«#i:LTcDpyf-y > y:/P/W£'9 o 5t, 
uyy-yy7u;u#9 o sfr&M^ftSpyxyy 

^tf— ^90 4, ^BtC, ^lyf^'f'fCSLTM 
tt&EEHft (C e r t_x x x) *»ff"T*KiES (C 
A : Certificate Authority) S e 
[0 2 8 1] 0 5 4 <Dffilj&ciS^T , ayr-yv/uA 
0 5 £*— WyW- ^9 0 4(4, ->3 v7°V 
-A9 0 lfcttLT, MMt4?nyr 

yfyyowssns, 0j;U43yTy > y7 , p;w 

^ BBSS' 3 -y /tea yf yytf^f^nrt 
<fc^U 3yry7©«}ftt^§iftf*^ISO-!}- 

[0 2 8 2] 054 OfflAfflfi, #5£W<E>BW!©g#* 

nyfy75lf) ±»f O— iJ* WW" 
f.+SfU^oxyf-f T-f(Oi-D<DViMmt LT3 yr 
yy7 , n^y^9 0 5£^bfcfc©r&3o 05 4<D$ 



-A9 0 3t<t^Ti|Xil2n5a^cS-3'^T < Sa$ti 
33y-ryy^9±&fx-*05g§g^ c fc!)> gB©@E# 

^fSxyx^T'CA^S^fi, ^oxyr-r rYtf 
0 5 4 Ofttffciiofc 0 , P^iR^-9--^9 0 3{cj:t)T 
iRft^nS p ytcg^^T §a©IE#fU&£6l^<5JftET 

[0 2 8 3] 05 4 ©$$Cfc<^T, ^37^-^9 
0 114, 01fl!l©«iac*^T«Wbfci:ra*O«lfi!iTf 

flHtaasu iia^^fcaww*** u pyf- 
y^ixt»§itMc#9Xr-^7;ta^TfLT, # 

fc, 3yr>77'D;Uy'9 0 5 9"'J y?V— * 

$o*%mmm, 3axmii&MMM**u py 
saatfew- sist)5i %wms->r yxznfi? -So 

[0 2 8 4] (3— if «H) a— tfflWB 9 0 2 tt, fttc 
0 7^fflV>T^Lfc#|fi!c4:lRl^-r-fet), Hf^ffiJI, £ 

«^Brafc*j»#®2 3 o (B7#a) fe 
£u *n«S0iJT't4, »¥IS2 3 o«, ziyy-yvm 

2 2 0*fc£tf Lfcuy7*-**«lfrr*o 
[0 2 8 5] 3.— tf«HB9 0 2 fcfc^T&SSfttttt* 
n5O7*f-^OMM%0 5 5 K^1- 0 0 5 5 Kt4, 
D7"f-?0»2O/fNLTl/^„ (A)*WM»Jltt, 
3— ^889 0 2*^3^^-/^9 0 1 fc©a»)3l* 
K^&fiLfcpyryywfWfT&^yry'y I 

D, 3— »f««©!«giJ?T*53,— ySHgl D (I D_ 

dev) , m 05 1 s?*fr4 -3 fc-y 3 roiisij^T-s 5 

y3<y^I D (I D_SH0P) , «03I*©B^** 

§§©§£ (S i g. DEV) tf&diSftT^*. P^lR 
*-9--A«3— lf«S^6S«-r 5BSAP ^©m?SS 
cD^SESaa^llfTl-^o (B) Wfi»j2{4, )S5HilK7* 

-^4:py-fyycDg®BB#T f -^fc^LT3-^gg 

os« (s i g. dev) *<afe««nfc«j«-e**. is 
%mu^~ z {4, y 3 <y ^-9—^ 9 o i # 3— ifas 9 

0 2^6<D3yry > yPAS*tca-^v>T4fi!c'r?>3y 
[0 2 8 6] 3— yfmm o 214, 3 yfy 

tCf^UT, mtfH5 5tC^-Tpyy i -^^fi!cL3- 

-^«rPyUXm-9--A9 0 3tcj^fif5„ cne.wso.s8 

wr*. 

[0287] (p yi&mv--/v p ^ 9 0 3 



(35) 



ttH 2002-141895 

S 



In^flf-M-X9 0 3 l^WtSo WlMvWS 
if-M-X9 0 3 1 ti, «*fcp.-1fi»«fr&3ffi 
tin^f-^ (0 5 5#bs) *ffiJWr*f*-*^-X 

[0 2 8 8] n yiR*-^-^ 9 0 3 It, a.-*FWm 9 0 
2, ->3 7^U-A9 0 ltPfcOiHIffla § 

S9 0 3 2£WT So fMfH¥S9 0 3 2tt> ftfcfMliL. 
*fflV^TKWUfc*/ilii:|B|«1?l5So fl*J»¥®9 0 3 2 

(DB^mm^mc $ v > rut? s ft s st^saa e *> v > t$ 

a 7 * ftT * „ n ^iRilWw ^ 9 0 3 tftefflt 

/*9 0 3<OWSM'- Ks LOG, n^lR*W--/<9 0 3 
O^M«IEW» C e r t_L0G, &M»ffilil»0»ff 

mtt*£MmEGmffimti,T<DWRm (ca : 

Certificate Authority) <0&IMK p C A*<*5. 
[0 2 8 9] o^lRm-9--^9 0 3ti, a— *f«KB9 0 

SaE»9 0 6teK2SL.T. a— »f«||0»HI«SEW»0 

afai#*fffti#\ SSES9 o 6o»ff L.^nmKn 
jaaicov^Ttt, 7P-*ffli/ , 'T^©TPifflt^-r 

■So 

[0290] (nyfyyBAJUl) *HSSPtt^t5 
Mi, 0 5 4c7)±|g^-r£Mc, 

a. uyy-yvwxnm 

c. uvT-vvms&mim 

D. 5? 9 ±tf Stigma 

<0 4o©fflatiMi*ft* o WT, cftc.O§©at<:o 

[0291] (a. py-f-yyatAsaa) pyry^Bl 

Xtoat-OVT, 05 7, H5 8'cD7P-?rfliV^T^ 

•r«o 057, H5 8t*^Ttt, arnica.— vmm, 

/<mefc^Tfflssaffi#nfr£ft5 (s 1 so 1, 

S 1601) , 

[0 2 9 2] ffiSBiEffiati, 0 1 3*ffl^TlfflLft 
&IHIM2f5KfcS"cJ< fflSi: LT^frSftS, coiSB 

ffifcfcl^Ttt, iSBE^ (CA) 9 0 6OMlt?.tiI 

BO»e«ftfeftllMWEW»*fflv^Tffbft, p— (f« 



f ^g8HtEWflroH«f«ia{±, P^iR^+r-/^9 

o 3 £*r-r § p 7<Dmm*0kftt LTHfrsn*. 

[0 2 9 3] ffiHRIB^fcfc^T&aLfc'fe'yS'a 7 
SI (Kses) li, j&SKJSUTSSM-r-^SHg^fkL 
T-r-^jififcHfrUfc*), fcSWiK s e s ^ffl^fc 
^B^x-y (I C V : Integrity Check Value) © 

ft So I C VO&afcO^Ttt&SE* 

[0 2 9 4] fflSKBEflV&i-fSi:* p— p 

^ (S l 50 2) tSo IAMf-?(07t-V7 h 
0IJ£0 5 9 (A) tC^fo 
[0 2 9 5] J»A®*7*-*JC«fffla©h7 7'9 , »-7a 

yiD (T I D D E V) , 3yfy7»J?T'i653 

yf>'V l D, a.- ifamoHgiJ^TfeSa— *flJHBl 

d (id_dev) , pyxy^tf+STfcsa^ffitS, 

*5f=iiAflaHB«f*^*, cft&cix-^tcw-rsp 
-iftst§©*& (s i g. De v) *±jaufc«tdtt»a& 

[0 2 9 6] a— 9**8§§ti, I8Ag*T-*£> 

B5(®^x-y^{I (ICV1) *4fi8LT» ->3 7 7"f- 
AtCgfB (S 1 5 0 3) "TSo SfcBf-xv^ffi (I C 
V) «u ilitSf 1 7 ^ f - ^ C Jtt § a II t 
£ffli^TfrS2ft, ICV = hash (Kiev, C 
1, C 2. ••■) tcicTfr^^ftSo K i cvttlCV 
«fej«*-"P*So CI, C2ti3iCK*x'y*ttfcr-* 

y-t—i 'SfflMffi^ (MAC : Message authentication C 
ode) «Stl5. 
[0 2 9 7] D E S B&#JM!«<a*fflV^feM A C 

M*06 Ofc^-To 06 OOSt/Sfc^l-iStflSiifc 
5 ^ «y -t— 7* 8 / W h#ffiK»«l U (W~r\ #§J« 
ftfc><>yfe— 7%M K M2, • • MN^tS) , 
SI*, fflffiffi (Initial Value (JiCF, I Vil-fS) ) 

tu i ^ffflwiiafo-rs (f-OIS** I 1 fcf*) o 

^C, I 1 % D E S 5m {fcaPE Aft, SI (WT, K 1 

■r*) jfeffl^TWHtftrs (tH^i^E i t-r*) o «»t 

T, E l*3iU r M2%gfffiWo^a?0t, %<Dtiit]l 2% 
D E S B§^»\Aft, «K 1 *fflV^T«Wb"rS (tH 
7^3E2) o J-XT, dft^rilSt)jib, ^TO^-yfe—7fc 

— i^MMffi^ (MAC (Message Authentication Cod 
e) ) fc£3„ 4*, *<yfe— 7£L-n±, ^ffi^i: 
45f-^ ^^fi!c-r 5 ^ fftiffl RTfilT? So 

[0 2 9 8] C(D<J;dS:^x-y^*ftl'f r -^<D3fe^x 
>y^ffl(ICV)li, 1CVM+-Ki cv%fflW 
^fig^ftfcMACffi^LT^fig^ftSo *5S©^V^Ci: 
*M«ffi« ftfetfB A tfr - ^ SfSWA'x- ^a^B#tc^^ 
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mhtc i c vttt\mLTm~<o i cv^ie.nMf 

[0 2 9 9] CCVii, I C V%.j£*-£LTtmmM. 
&flc£i$,Lrc-t-yi/3ym- Ks e sSHIffl-fSo 3- 
tfTOi, t'r>3y|:Kses LTHAS* 
T-^ (0 5 9 (A) #p,8) O&Hf-x^fi (I cv 
1 ) ££/£LT, ISA®*7 : '-^+ I C V 1 £->a -y^ 

[o3oo] i/3 7^-/^> i c v i f& 

gft^-^tcS^VT-tr-yv^^SI : Kses* 
SSfflLTScS^x-y^iil C V 1' *4fi8UT, gffb 

fticvi = i cvr ib^-rs^s^ws-rso 

f$Ag*x-*<Dg-£&tiE (S 1 6 0 3) 
&IJMtta-lfaffi©iNW«lM»C e r t_D 

ft?. fflfAffij|iNG£&3o ICVOfi-y?, 

E^-rnfeoKT-sn^ -> 3 >y ^••y--/^ ig^5tH 

x-£££/j!c (S 1 6 0 4) f 3„ 

[0301] mammr-fitt. mourns 9<d (b) 

yy^ti/ayi D (T I D_SH0P) , i/3v7<D 
m&T*$>%i/3<y7lD (ID_SH0P) , iS^B 

y-rf tM" (SH : -yxfi*;^) TfcO, 05 41? 

So 

[0 3 0 2] S5>fC, CP (3yfy77'n;Wfl 76 

t s WAS*?*-* (0 5 9 (A) #88) Cft 
?>(D7*—$UCi/3V7<Dm%i (S i g. SHOP) tf£ 

[0 3 0 3] 05 9 (B) <OW3f$Mrr—*~? *— v<y 
Mi, 3y-ryyoj?»)±if»cWbTjiff* (SH:-> 
XfA*;!/^) nyfyy/n/W^ (CP) £<D 
2o©iyf-ff^ OBe^lf * *I e§S L T ^ 5 *>V 

[0 30 4] I C VOfi'^, W*^lliEV>-rnt>OK 

T*fet), KJ6fiWBf*-*«Sj« (Sl 6 0 4)ni:, 

z/ 3 v -7y-~^imA*mmt % * -y j>*^tri8A 

OKf-^K-tyi'a^iK s e s Srffli^T&K^x -y 
^f(ICV2) *^tttaLTa-lf»SK:aMI (S 



1 60 5) fS. I CV©?-xy*, as^ti^-rnfr 
tfNGT'&£i:, ~>h »j-?V-mm\* i &&'$%*v 
■tr-^^tyatANG-r-^K-b-yv/gySiKs e s£ 
ffll/>T*H^x«y^ffl (I C V 2) *4J«W*PbTa- 

if«iiKasfli (s 1 6 o 6) t§ 0 

[0 3 0 5] ->3y^-^li, i?A0Kx- 

**3--»f«»tc38«Lfc»fctt» IS^fil^x-^ (0 
5 9 (B) #88) 'vy*f Ovf-wofiJffllWH^ 
^^tr^&iffln y-ryyRHSfffS) fc*f LT-fc -y a >S8 
K s e s£ffiV>T&®^x<y*ffl (I C V 3) £±$1. 
ftf-^tn^f^t^a- tfWiic9£fi (S l 6 0 
7) f 5 0 

[0 3 0 6] a— 3>f-^y**tf, MA® 

#Jftgx-£ (OKSfcttNG) + ICV2£g{I (S 
1 5 0 4) L, I C V 2 0fcffi*frfcV\ BtA£$JS& 
£5Sfg (S 1 5 0 5) T3 0 I C V2KJ:0f-^5aa 
fctfcWJ&StU BIA^SCj-Ansnfc (OK) T?&5 
fcSti. raif-? (05 9 (B) #88) i:, 'vy 
(a^f >y<DSfiJffl1MB9*«'tr*a3>ryylHl! 
■|f|g) +1 CV3£g{f (S 1 5 0 6) U I CV3<0 

T*&5Jf-&H:> 3>r yySfi OKOUX^yxc I c 

v 4 *4*lt^ a "/ 7-9--/<taiflrr*. 

[0 3 0 7] Xf'^S 1 5 0 7©ipJj£atNo"ea&5« 
Xf77"S 1 5 0 9K:J5^T, 3>f >ySMN 
G©1/^>7C I C V 4££$LT*>3 y^tf-z^c 

[0 3 0 8] i/3'y^1t-/^i:, 3yfy7Si0Kf 
fttiNGi I C V4£§M ( (S 1 6 0 8) L, ICV 
4©«fiE*?ra^ (S 1 6 1 lK S6(ca— »f«ffl|fr 

wrs3^f-y^<DS^a*M7 (si6i3) t 

OWD9l*P*» SSI/Hi^ h*-KJWEP«*» 

— lf«HSKSSfll (S 1 6 1 4) f So 7.^-yys 1 6 1 
1, tfctiS 1 6 1 2 0*iJ3£©V>fttfrAtNoT?&Sl§ 
•8-{±, X-r-y^S 1 6 1 5 fc33V>TH&5fc7* yfe— 

tc i c v 5%aaLTa— ifflWBtasa-r*. 

[0 3 0 9] IS^«?7 ($fcti*7) p<-y-b-v ! + I C 
V 5 L fca— !f atStt, 1 C V 5 O^M^^It 
?6CR*^*»7bfc3^*!pJJgL» H^A^A 

ftteOo X7-<y7S 15 12, SfctiS 1 5 1 3<D^JS 
[0 3 10] ^tC. 06 K 06 2*l^Ta- «f«» 
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mwmtic-o^Tmw-? % * m6 i, n 6 2 cornea 
co3i i] 3.-4f®&tatrmmv- /ra, ® 

SfgfiE^UfT (S1521, S1721) L-tr-y 5/ a y 

o o 3L-*fmmm!>mti.z&®- 1 l 

yS^HJLT, ISAn^cttLT-tr-y^ayStKs e 
st'*lfi^l (I CV 1) Z±l$.LZmAulf+ 

1 C V 1 *v VC'&m (S 1 5 2 2) T5 0 
[0 3 12] niftK&U— 18X0^+ I C V 1* 

S(g (S 1 7 2 2) L, I C V 1 O^liE^^tf (S 1 7 

2 3) U tWffiOK0»&t4, D^r-^^-XrttC 
S# (S 1 7 2 4) "TSo 4*. n^lRH^-Ate, S 

fT&oT, x-^BfcM^W^HK^x-y ZVZ&l&t 

x— £&C-fe<y .Vh yUK s e sTWi'^f (I C 
V2) *£$U n^fOKf-^+I C V2#a- 
TOffiKiSfflr (S 1 7 2 5) TS„ Xf'^S 17 2 3 
£DI CV l©$IENGT&ofci:f?fc}:, n^iNGf 
-^fC-t-y$/gy®K s e s T'&g^x >y £fi (I C V 
2) ££j£U n^§lNGf-^+ I C VZ*a- tf 
ttfttCiSfll (S 1 7 2 6) f*. 

[0 3 13] a— »f«iBtt % D^gfif r -^+ I C V 2 
*Sil(S 1 5 2 3) U I C V 2O&SE0K, P?"§ 
ffOK (S 1 5 2 4) TSbZWi'&lt, S#M©&|IB® 

(K p D E V) £!8?B8i (KsDEV) <D^7**fiK 

(S 1 5 2 5) U SfeJ« U/t^RIM (KpDEV) |C% 
B*-xv*ffl[ (I C V 3) ££${#DLTD^lKi6-9-- 
^Kjgffi (S 1 5 2 6) "TSo 

[0 3 14] o^lflTJl^-^J, (KpDEV) 
+ I C V 3 *a-Hf«Sfr & ( S 1 7 2 7 ) 

I C V 3 ©^lE^Uff ( S 1 7 3 1 ) U ttSEO K 
T*$§^ii»Pllf MO K ^ 7-b-ytJtt5 I CV 
4%&aW*PLTa— (S 1 7 3 2) f 
£ 0 I C V 3 ©tftliEtfN G T*S*&ttiMMBMtN G 
^ .y-t-s/tc i c v 4 ft^frtntTa-ifllikiaMI 

(S 1 7 3 3) "f So 

[0 3 15] £e,tc s /<»4, 4«l«S^O 

ytr-S^cttf 5 I C V 4*&«f«MiPUTa— lf« 
ggfC&ffi (S 1 7 3 2) LfcJf#, HfTif (CA) fctf 

T, a-1f^©M§rSftfc&BI«lEimi (Ce r t_ 



DE V) fcSStff (S 1 7 3 4) U ®K«nfc 

^IW«BEW« (Ce r t D E V) fc*tr<&&M*-xv 

4MB I CV5*4*(*taUTa— WMIKaHl (S 1 7 
3 5) t5o 

[0 3 16] a— ftHMIttli (OKSfc 
(iNG) + I C V 4 fcgfiUfcSL I C V 4 
fcV\ I C V4*MfiE0K"t?a&!)*. ^BB«SfllOK (S 1 
5 3 2) H*fSnfe»HaiEW»+ I 

C V5©gf§ (S 1 5 3 3) =&S?tU ICV5«D$ 
SE> 5MLfc&l»^W«<Ott8E (S 1 5 3 4) *S(f 

ft (S 1 5 3 5) ftffft«,\ -»Lfc»fcttHifrfflfc4 

fig htdmm. *s J: tf Lfc&MI!KiB«*a-tf « 
fgrtO^*Ufc«# (S 1 5 3 6) Lx ay (ayi&JS 

•9--^tasw»*©ndo ©msa&s (s 1 5 3 7) * 

[0 3 17] Xf7/S 153 2s S 1 5 3 4, S15 
3 5 <0V^t , n*»O*BE*'N o ^4^M 

[0 3 18] uVT-VVZru/WfftuWBi&tir 
So 4*5, 0 5 5 (B) fc^fK3S«K7 s -^*lftWL 

[0 3 19] ST, n^ryy^D/W^to^iR** 
-/<fflfci3V>T, tSSSlfiE (S1521, S 1 7 2 1 ) 

y?u/U# (CP) (D&fflmmwmc e r t_C P*> 
(S 1 7 2 2) , I D_C PfcWfST5^'3±lfT f -^ 
1 7 2 3) TSo iRifcLfcn^f-^Ktt, tdaufcj: 

±«f f-^fcWTSOttf-x '^flCVl %4^*P 
LTnVr^yyp/W^ (CP) JC^f (S 1 7 2 
4) TSo 
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[0 3 2 0] nyfyy/D/^? (CP) It, D^'ljX 
^-/^e>^0 ±tt"-r-£ + I C V 1 £§{1 (S 1 5 
2 2) U I C V 1 cD^K;HT&oT-r-£&®<D&V-> 
<Ii:£5IBLT (S 1 5 2 3) ^?)±tfx-^^^ ; &U 
izUfc (S 1 5 2 4) f5o I C V 1 «iI^T%dt 

nfr&i\ mmtt&TtZo cornet, mm. n^is 

[0 3 2 1] mz. is3v7y—^ta7W.My-'^ 

n y r > 7 y o / w ^iwegfrs fts ?! o ±tf wfitta 

fcov>T®6 4, 06 5 08LSi7n— fcg-^TSMirf 
Sat, n#R||Ww<lcHl,T, Br£«3Hrt©^5 

tfT-fzmistzvmttmfitZo si6 4t±, ^3>y 
*-ftLTv7WkV->^&m?% l m.T>$>K). m 

5<Dmmit, fa y 7V->WWrsLfzny7-yvmi 
yyKmt%7t*)±i>f*M1RLT3y7-yv7ti/W# 

K&flrr saunas. 

[0322] 06 4(0^9 m-mms&mfrmmt 

T> ffiSg&E (S 1 6 3 1 , S 1 7 3 1 ) tfUfirSfU 
■fey^aySlKs e stf£$£ft£>o fay??-/* 

^cw-rsattf-xv^tti cv i*§-ffltf}\\LTuif 

HSBfc-9— ^<eaS« (S 1 6 3 2) -T5o 
[0 3 2 3] nyiR^-^a, J'3 , )'7*D , -/^6i 
5Et>±lfx-* + I C V 1 «5M (S 1 7 3 2) U I 

c v l 0&ffi£ft&oT7 r -#&ga©&V'><: fcfcfitBL 
T(si 7 33). m HfT-ZZttmcim (S 

1 7 3 4) -f 3 0 1 C V 1 cD^SE^R^oT-r-^^a 

[0 3 2 4] 0 6 5 0#£nyfy7yD/W^ID± 

ayf-yyT'n/Vf'^IBfcfc^T* fSSBKE (S 1 6 4 
1 , S 1 7 4 1 ) tfjlffStU •tr-yS'a >ltK s e s 

£ LT\ ffl5BBET» 5 ftfcn > fy y T'o/ W 
WSIffiEWSC e r t_C P^e>3y7 L y > y7 P a/^^(D 
HSU? - *?** I D_C P^OtBL (S 1 6 4 2) , R 
OtBLfcI D_C Pfcffi-oVT, r6 ( 3±lfx-^C0^ 

yy<D^.*)±.^f7 £ -^^m.n (s 1 6 4 3) f 3„ 

fig^nLTn^^-^Jc^g (S 1 6 4 4) T5. 



[0 3 2 5] a^iR*"9— ^tt, S'a'yT'U— 
ft*)±.lfT-Z + I CV l*Sfl| (S 1 7 4 2) U I 
C V 1 ©^H^T&oTx-^&a^&^il tftffiML 
T (S 1 7 4 3) , aSt^fT-^fc^UfcfffiF (S 

1 7 4 4)t§„ I CV l©*fflE*fr4-3T-r-*3feB 

* 5 **>) C^f«r-*fii#*^fir«-f , 

[0 3 2 6] *SI«flfi|ofl|fi!iJcj:ntf, a-*f««©& 
t^i/T-T-LMM^ (S H : System Holder) (i, uy 

Tyy%*)±imvi*mmcim?zc tmsmt* 

nrcwmmmttfit % c *: #n yfyyix^fi 

StfPMfr 6 « 0 Hi £ ft 5 ftMBlc «fc o T HfrS ft * £ 
i: K» 0 , trJ»ftWlfi©lfBE«ftfe^H«BEflB«%*-r 

■!f«Sgtt, ^yTyvMXttfiKdrctblc^ ufr- 

af 5S/7.rAji## (S H : System Holder) tt, £ 
[0 3 2 7] ±5Et/j:J:3t, -yXfAIftOflt 

ft, n>r->yfg»)±»f«iH*Wl-r«c 
1rafgta-3"^T. n>'x>' > y^t)±tf^3y7 L > > yya 

[0 3 2 8] *H)®^JTti, ^xyx-cx^fStc 

* V > TMfll * ft 5 r - * »c tBSIgfiEBf ^ L fc -b >y -> 
3 yg|K s e s ^BfcHf-x -y ( I C V) OSfiicSii: 

tTfflv\ ^fgx-^tci cv*#iinLTjifli-r5ffi»a 

[0 3 2 9] 443, ±abfc^Sg^jT(i, a-if«Sggi: 

jaao^-rftfciitf-rs^tLTifiKufobv ^-rft 

[0 3 3 0] [4. JBtt7*-**BBSL;fc4aH«SWI« 
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tc 'AMWKffl* * tz it m®.iimw<D mm mat to v > t m 

MM®* 3 v TM1S%tf=L— mmc ft 0 ft LTa y 
9lf?*ff45BIl!ltt««**. $fc* jE3ft«»??l**ll 

f fLfc^IEftl?— /vefcsj;9ftjf£-tt, a— *f»& 

SBSis5g*?Tft o ft if common ft ? niffittfcsjre* 

IE«ft ^ y f vyfifl^lGIt * <: i: tfHJi fc ft 

<E>o 

[0 3 3 1] co.fcSftlEMftpy-ryyBEifn'-FJii 

[0332] mfcr-fta. a-+f$f§ (DEV I c 
E) . •>3 77' (SHOP) . ziyy-yy-fu/U^ 

(cp) , -9--trxa## (sh), i^wm m 
m&mtDmjmMZft ft 3 s»at& a y^-yvmt 

[0 3 3 3] JBtt7*-*0*fiiMWi:LT, »ftx-£<D 
rt§*^"ff— TVl'fcB 6 6 t^-fo 06 6 tj^f <£ 5 

^tti rooooj , n yy-y > ygHfiyx7 L A±T')^ 
ill- § ^ y -r y v (c § 5 f -t y x ifeflUR-r § y x f 

A*;I/^i:LT<D-9--K:zS»#Ktt rooo 1J tfH 

-/^BS-TSxyf-^f-'i'Ta&ofcD, tfes P^'lf 
$8£iKH-f 5 a ^*tf / <* flFS"fr 2. x y r ^ r 

[0 3 3 4] S&fc, a— •faMWcttbTavrvy* 

0 0 2 j > ->3 7y (ay-fyySc5S#) frtb<OW&K 

^yr-iy-^TSo^ziyryy^m^i/Cit, rooo 
3j , nyf yyfcWAUUfflf *a-if«88Ktt To 

0 0 4J On- F^ffJOiT&nSo C<DffitC fenyf 
fcTSftSn-KtfffJ 9^X5*15,, ftfc, ->a7 7E 



fj, «E®Sft*S' a gft?>3- 

*fca— tfHggfcfc, f5f6fr©*-r=rUK*Si:Ta** 

[0 3 3 5] ±5SLfcStt1fffia. iHMOEimi(C#« 

t , ftl!MtlE9J* i: »£ft S JR&K9§tt*afT 
L» JittKW»KJ:oTI!1t*M»J-r*«iai:*<«*o 
JBttttf**»o^«|«aElB»0«baflf!l*H6 7 fc^T, 

[0336] 0 6 7 icTKt&mms.wm*. bew#©^ 

-«;ay«, £KI»fiWMB6fTB (CA) tfEIKtSI 

mmmnmm, mwmmnzxm (ex. a-if m 

81 1 D) s SEW«fiJffl#©4>B8«» *6.t, ±aiLfe 
[00 00], [0 0 0 1] • • [n n n n] ^OJStt'lf 

USSfr* (4/WM , ^ (2/Wh) , 0 (2/W 
F) , -y'J7;b## (8/WF) O^fH hfcf 
5 0 *iJffl#£«U S^^c0^ii)5lSSijRltgftm *5 

[0337] m?m&&, mmm<o/<-i/3 y#^ ^ 
HmEnmrA ( c a ) wMmmmmmcM u*j # 

[0 3 3 8] ^^g|ETO5gfT^ (C A) 14, H6 7 

*^->3 y : Revocatloni:^) ^T9» 
[0 3 3 9] -7?. JlflD^BII«SEW**fiJffl-r*IRK: 

t4. *ijffl#figEtf«#-r3«ffja0&iiaK p c a^ 

[0 3 4 0] %(CB6 8KJlttflWR**Sfc!8:l/^WttlE 
BttEH^»c0r-^1ifiE^-r, (A) «J1'I£ 

*«*«ffc»v^BB«iiw»"P* •? , s 6 7 icjp-rftn 

^MKffiWtfssfTjs^aff-rso (b) imimwmv 
m&mmwits m&m.wwmm (a a :Attnb 

ute Authority) 1?W<7?5o 



(40) 



ft §32002-14 1895 



[0 3 4 1] 06 8 lCvk-?m&M®&l&s M.W9<D/*.- 

•>* 3 y#^ m&wvmftfrm (a a) ftmitzm®. 
*%Ha-^tt* 'j^f-^t bTo*fii*«fo 0 stt 

fr*P (4/Vf h) , £ (2/Wh) v 0 (2/Wh) , 
5";7/l/#9 (8/Wh) cD-a-ft 1 6/VH:ti. * 

»?UflJ#0*«l (ex. a— tfHBl D) , cftfi, » 

518530 nl^&:&f5, fc3i/H4£Ut 51L##, 

tlftf-iilWT**. S5fc» ±atfc [0 0 0 
0] . [0 0 0 1] - [nnnn] ^©SttfffB, JI14 
EBMUgfrJB (A A) <D»?g££^t?„ 
[0 3 4 2] Ifl^tt, IHMro^-^a & 

[0343] m&mmwim (a a) B6 8 
(b) icn+m&Wfitzf&ftrzttkK.* Guam 

Jf*fr3fca«*IE*yxh0ffta, fl> SB* (cn 
€r'J#y— >3 y : Revocatlonknf^) Sfr?. 
[0 3 4 4] 06 9fC3>f->'y9l'3?ltK#3!(P , i"Sa 

*5, lCT'->3 y Xtr-z^ 10 10, a— f$gg 1 0 2 

Ott, Wi$OBIlflfiT8iWbfe!:ra*0«lia*l*o, -9- 

5->7fA*;^ (SH) T-fcO, ||Jl!l/ft3>f>f 

3 y?V-K 10 10, a— "fits 1 0 2 Ofl&O&Mtt 
1"^SSiM (RA : Registration Authority) tLT<D 

3 Otfi^xAdVl/^ (SH) kLTOHtgt, 
(RA) 4: LT®«86*#o:«j«TfcS#, cin?»tiBiJ 



[0 3 4 5] 06 9Ttt, a-1fM§l 0 2 Ofcfcfr* 
^MBaEW»©iWS5Hf A 1 ~ A 8 T'TTs U ~> 
37^1 o 1 0 O^BMfflEW«Ofr«afT¥a!* 
^Bl~B7T^lTl/^„ *1\ a— «faHSl020 

fc is » 5 &IS8gEill3ff Oft SBSfr ¥«! * ic o^TfflRt 

[0 3 4 6] (A 1) iSSSM. 
f-f, a— ifWI 1 0 2 0 tt, tf-tfXfflgi* 10 3 0 
fc(0|ffl"P*iSKSE*Slff"r So fcfcU ccttfa- 
■«f«SB lOZOtt, &WttffiW»*ffi8rL'TV&^0 

MBI? (ID) ftfflwfcffiSBK 
«HS*HfT (SW401 2KH"r*WH*#iD iTSo 

[0 3 4 7] (A 2) W&&*7&9. 

(A3) £ffl£SEiHff8fT£$ 

(A 4) *!&&IMMKlHft»fT£* 

(a 5) 'mfmwmmm$. 
immmtfis&tzt. a— yiss 1 o 2 0 «, ga© 

1 0 3 ott, affa**«Eu, ^w«Kw«*58fT*r 

W»afrS#*^BMMiEW»»ffS (C A) 1 0 4 0 K 

06 8 (A) f«:S-rJBtt1S««:l*0^ia«liEra«T«S 
ti^ti, +r-IfXJS^#:i 0 3 0(4, SEWI&SlfTS** 

[0 3 4 8] nyr^yEfitlMlP-r^a— tf«8Hc 
(i, ^*a— ifWfiMSiJ? (ID) feJctfSMBWKtt 

tfxa^ft i o 3 ofcfcoTBa^nfeflua-pft 

■9— trxa«i*l 0 3 014, a— «f««^6aSfll* 

[0 3 4 9] ( A 6 ) £fflttff91*ftfT 
(A 7) ^MttGE^ff^fll 
(A 8) &MttSE^«3Kfll 

it- ex»#i*i o 3 o 0ftMME9iftRfT£** 
Sfft^&BHnEimSfTJB 1 0 4 014, a-ifSlffi© 

t, ^MitiEKtti^A 1040 

**»o^l«HWBEW* (06 7^^(406 8 (A) ) * 



(41) 



ftffl 2002-141895 



a»{* i o 3 ot±, &ra«SEm§*»fTja i o 4 oA^e.g 
mLrcftmmuww*3--*fffimi o 2 ot^i/ram 

(a 2) "p4/atTfev^iwfi«*if*/wxrtKi&itt 

[0 3 5 0] -15, '>3 7^-M 1 0 1 0 (D'j&ffimU 

mmnffir&mz it, »*wk a— y ««k sew 

oT, 3 -y y-f--^ 1 0 1 0 it, iEO&HBSIfctfc 

^^-tyx^ii (06 9, B2<D^m,%) ^nff-r 

«ci:4J/3 7^- m 0 1 oawrsaaafci, 
THff?n§toT-fe§o -9-exa#tiu 0 3 ott, 

3/g -y^-/?l 0 1 OtfU— IfXS&ttl 0 3 0#5£ 

465 # U 3/-tcfi£ o fc 3 yf y y JEa»*HfT*nJ6T* 

t) , 3/ 3 >y /< 10 10 U 3/-«r»^-r 3 £ t 

tfew^tti, 3/ 3 v -ficMt z&mmmw<D 

a, ±abfca— »f«Boii^i:nan»**. 
co3 5i] ^c, ^mmmm^mnimic-o^rm 

7 0*ffl^TittWrSo 4iH«BW«ttB6 7, 06 8 
(A) tew"TJ:$fc^JIBKtfJ£»&ftTfc»), £UMt 

[0 3 5 2] 07 OKfcl^T, a-+fH§g 1 0 2 Ofcfc 
tt%teWffiM.Wg<OW8\^Wl%1k A 1~A8T*^L, 3/ 
3»7^- /<1 0 1 0 ©£W«E9»©M*r¥lttt* B 
l~B7r*^LTV5 0 a— 911831 0 2 Ofcfc 

[0 3 5 3] (A 1) fflSBSE 
$-f , a— 9W 1 0 2 Oti, 10 3 0 

0 2 Oti, «ft^fc&H«BEIJW*flHrLTV>*© 

*, -r T- t ©ttia wBEw^c^fjftiHisjy-r fx u > 
wLfc&mmm. way? d d) *ffl^fc*isBiE*a 

[0354] (a 2 ) mm^mm, smmht&s 
(A3) £niMiiii«£9rg$ 

(A 4) tt&ftPIMEillfflGVfS* 
(A 5) £B£3EiftffHSrg$ 



fBSBEtfjfttrs a-if«S l o 2 Ott, i3<D 

«k* i o 3 o mmmwm&ttwciamt 

§o ^HiaEEW«H«ffi«*5MIUfe"9— lf^5I«#l 

0 3 0«, ®Kg**»SU JBKWMfflHaLTIrSB 

IMI!»M*rB#*&MTOB»^S (CA) 

1 0 4 OKWUTSSfif*. 443, CCT?»f?-r*4Jffl 
HtiEI8«tf06 8 (A) fcw**tt1t«*^&l»»SE 

HB»T*5#&tt, 9--tfxg#tti 0 3 0it IP» 

5KTS**aSMLTtfcx>r^r'roJBtt* I OicS 

[0 3 5 5] ( A 6 ) ^MttKnfnBK 
(A 7) 'AmffiSmmmm 

(a 8) 'Afflmmmmmm 

•9— e xmnft l 0 3 0^6O^MttEW»M«rB#* 

zmLittommmmiffim 1 o 4 ot±. a— mm<o 
mmnm&miiu ^wammtmnm 1 o 4 0©® 

?»**»0^|II«BEW« (06 7 S/£«0 6 8 

(A) ) *«frU 9"-trx-iIgttl 0 3 OKSSfflH- 

So 9-- if xrnnw 1 0 3 0 it, Kmmmwwffim 1 

0 4 03^6Sfflltfc^BI!«IEW»*a-if«« 10 2 0 
• fcJfeBi (A 2) 7&aLTl3t^ffi««*ir/W 

[0 3 5 6] i/ay-fV—A 1 0 1 OOl^WSiB 

Mir (07 0, B2cd#^£) ^rUtfTSCii^Si: 

4-i.o -9--trxai#fti o3o#, •>3 7 7 , if-^i o 

1 OtO^-i'-feyxMSf^Bi&fe^tcti, 3/3-y^cW 

[0 3 5 7] ^c, 07 1 *ffl^THttSEWffi©ffMf§ 
ff¥H*K^TfiW-r5. IttMKi, 06 8 

(B) tC^-rEW«T*fef), 06 8 (A) icBttefflM 

m.mw(D&ft<o&, mteMmmtfiffiyztiZo 07 it 
a, a-« 1 0 2 oiasifzmfflstwmvmmmi 

^t*A 1~A 7T*^b, 3/ 3 y 1 0 1 0 <D 

5 0 S-f, a— tf<iS 1 0 2 OfcfctfSftPMHEIfflH) 

[0 3 5 8] (A 1) fflSBK 
s-r, a— (f^gg I 0 2 0tt, -9— tr*ffl«tt 10 3 0 
fc©WT»ffiSBIii£*^fT-r«. coWA-ea— 9*«|ggl 

0 2 0 1±, t?ic£mmmwwmm&?>mmw®*u 

WtTV^OT', 4JIWItSEW»*fflv->fe*iSBSE*llff 



(42) 



^2002-14 1 895 



[0359] ( a 2 ) mmimmmmx 
(A3) &&&mmtwmm7g# 
(a 4) m^mmmmim^. 

ms.msWi£iLt%>t. 3i-if®& i o 2 ott, -9-- m 
xmnw i o 3 oicttLT, m®.mMW%fig%*%in 

o3oti, mm^m^.L, mt&mm*twm%^ 

^TS**S'ltliEB^»fgff^ (A A) 1 0 5 0K*fUT 
iSffltSo ClW- tT7.a#ftl 0 3 Ott, BE 

izmmt 5 a— mmc tt, ^toa-+fwi»j? d 
d) tfte$fi2tt. ct\<b3L-if®.m\ Dti-9— ex®# 

ttl 0 3 0CJ;oT ( ig;£nfc$$'C i &D> It-lfXffi 
Ml* 1 0 3 Ott, a— m^frZ'&itZftZ I Dt, f 

[0 3 60] ( a 5 ) mmLwrnmi 
(a 6) mvtmwwmm 

(A 7) 

^-IfXlfW: 1 0 3 0 6 0«'l4IPj»5§ffg*£§ 
«LfcS14tiEB^«^T^ 1 0 5 Oti, a—tF$§gcDK1£ 
tif$S£te*ftU S14EB^#^t^ 1 0 5 0 

(0 6 8 (b) ) *«ffu t£x« 

f{*1 03 OtC&lf-f 3„ ^-IfXlfftl 0 3 0(i, 
«ttBEW«»ffS 1 0 5 0fr&g«LfcKttEl|«*:i 
— tf^ggl 0 2 OfcttLTSSflfSo a— *f«§8« % § 

[0 3 6 1 ] -7?, fs»^-^ 1 0 1 OOJBttffiW 

•©afr^a* (B 1 ~ B 7 ) tt, »*WKa— »f*ffl 

-0>0 

[0362] jRttEn*^^*jittfinsm * 

mmzno^yTyvmn^ic^TmwtZo 
[0 3 6 3] ®7 2K®i§.mu8ficmTmimm!m 

Ltcm i^TsT-Kmj&tmwQhZe =iy 

fy7lA^Rt5a-f«i 020, a— tf$gg 
ISUIJ— ^l 0 3 0«£g?gi:f5o C CT*, a— if 

*sibbw— i o 3 ott, Mi&LtcV— xxmn&o 

WWTlChZo 07 2cD#*f (1) fr?> (2 0) (OMK. 

[0 3 6 4] ( 1 ) |5H« <t dhhmmi 



i oco£?i: n/^7*-*igas*ST»*. twitters 

[0 3 6 5] 2f6.fi:, *J|)5SWcj5^Ttt, JRtttlBA 
a*Hfr"r4o ->3 1 0 1 Ott. Sffiffl^O 

tt r^ijffl# (i d) j tf, ^m«sew*^(0 Gils 

*5j:tf/*fctt npjffl# (I D) j i:-gtLT</>3 
[0 3 6 6] -73 , tf^ti 1 0 2 0 tt, jlMffl^O 
OJittj^ S/ 3 -y ^Tfe 5 c i: Sr^T r- ^ T*fe S c t % 

tf/sfctt nwffl* (i d) j ^saiEWffirto 

rats^j isiif/sfctt rfijffl# (i d) j 

[0 3 6 7] i o i ott, uyfyvM 

— f$g§T?£Sil fc*BBBU a—!f^g§ 1 0 2 Ott, 

[0 3 6 8] m l &MM$m<r>7 u-*mi 3{c^-r 0 0 

7 3 (A) tt, i^ltfiEIWCJIte-f- 9 ftT 

(b) tt, mmmm^m^rzm'&mu^mx'h^o 

[0 3 6 9] 07 3 (A) <Dyu-t^mmt^>o S 
-f, 7f7 7"S 2 10 1 tts^T, ^B8«BEW1&*ffli#^ 
fc*BSKiE«ia*SlfT (01 3#Sg) l, KjBE^iSfiL 
feCfc**fti:tT (S 2 1 0 2<0¥iJ5£Y e s) , fflf 



(44) 



#P*1 2 0 0 2 - 1 4 1 8 9 5 



[0 3 7 6] v&mtziyT-yvWr—z 1 (i/a vf) 

it. Mmmhrmi 4 a) \CTF*m&vib%o t% 
bis, nyfy^iAoss^ia- o 2 

0©13iSiJ?T&3a-^lig§I D, 8fAg*x-# (0 
1 4 (a) ©a-^fi&i^itiPJ^^fcx- 
, :a;/f->7®9§l£&C#l,>i/3<y7 r 9--^l 0 1 

Otf&SLfcS/a'y^ffiSNo. > BfHffka^r^yil 
: K pDA S (K c) *ffU cn%<D"r-Z\Z 

jtwss/ay^y-— o i oowPSfcAMtftaSftT 

7) fctt, J^gy/fr-zM 0 1 0 <D&BMMEI!l3fttfiS 
tt£*U a— tfWSl 0 2 (HCjMtt£ft£>o fa 

[0 3 7 7] (6) §{fr-*^liE 
•>3 7^-Ai 0 1 0fr5>B^§{k:n>T>7 : .Kc 

(content) £,014 (b) fc^-f Bg-Sffknyf-^y 
Itx-* 1 (is 3 7 7") £§{f Lfca— 10 2 0 

it, Bgmtuyj-yymT 1 -* i &av7) ©&tisa 
mzmntZo ncommmit, mcmwLtcmi 5© 
5ag7D-£p$cD5ag-??&^ a— if««i 020 

f-f^a >y:/+h-m 0 1 O^B^bfci/a >y7° 

v-'WArmmwwvmizmm cca) ©ansa 

Lf">a y 7*+N-^<D£^tt K p S-H0P4ffi^TB 1 
4 (b) \Z7f^r^mt-ayy-y^m.f-^ l ©->3 7 7° 

[0 3 7 8] ( 7 ) cfc HttfflBfttil 

a-1f«Sl 0 2 0tf, ->a 1 0 1 Ofr&Bg 

•Sffk^'r^y : K c (content) t^mt^ >T>y 
Wr—Z\ (-7 3 7 7) £§{fU Bg^fka^f-^ya 

0 2 0(i, a— *fmmm->^ 1 0 3 0 [CTt-tX 

U 3.— <f«MB 1 0 2 0 1, a— 1 0 
•fSo CCiaati, SiM©>'3 > y7'-9--/ < «i OlOha 

-if as i o 2 ora©fflsffiffi$irafej:tf«fflitB«ia 
[0379] (8) ^^y^yvWr-z (a—If 

a— tffflffi 1 0 2 0 £a— «f«§§KliWW5 1 0 3 0 £ 

OWOfflSBiE*J:tfJittfilK*^fi-r* £> a— «f» 
§§ 1 0 2 0«\ a— |f«HSBIE'9--/< 1 0 3 OlcttL 
Tv ftlc a >y y+J"-^ l 0 1 0 3b^SfiLfcBf^{fc3 

>r>>y|iK pDA s (Kc) vgmt^yf-yy®. 

(a— mm) oymmt, mcmwLfzmi 4 ( C ) c 



*K3R©E#$fcT?fcSa~ tfflHBBSE-tf— 10 3 0© 
ISSiJ?T*fe5a-lf«JggBE-9--^I D, S/a<y7*-9— 
Aid 0^e.§^L/c:Bt^b=i>x> , y|i-r-^ (0 
1 4 (b) ©5/ a ■y7*^»»^l^^fcf r -^) , 
*5U C tl 5) ©x- * lc*tf 5 a— 9*$#gl 0 2 0© 

«?#BjWiii*ftT^*o s&t, ^mt^yv-yy 

(a— »f«SS) '>3 7 7°iJ--^I 0 1 0 
©&PMUEi&*fc, a— «f«fg 1 0 2 0 ©ftPMUEVl* 

a— tf^§§Eiiit-/n 0 3 0tciM#?n 

§0 a— «f«afflBK'9--/M 0 3 O^a— «f«jg 
[0 3 8 0] (9) SMx-^tftffi 

a— «§i 0 2 Ofr^Bg^fknvx^ySiT 1 -* (a 
— «f«S) t3 c fcZ>*Bg^bn>r> > yglA>tt*^S5t< (M 
14 (c) ) fcSffibfca— IflMIBK*-/^ 1 0 3 0 

it, mmt? y r yvm^m^w$.<DmBm&wn 
-tmm<D>mT°&r>, a— fwasMiv— 1030 

& Sfa- ifttS 1 0 2 0^6S1Sbfca— yasg© 

^B8aSEW»©S«E**fTSI (CA) OMlKpCA 

if«JS8©^WSlKpDE V«:ffll/>TS1 4 (c) C^T 
BS^ka^^^MT*-* (a— »ftSt§) ©*^»*© 

*©fcE*fSfFja (ca) ©4>w«KpCA*ffl^rsi 

ff U ^{c^aHB^A>P,ffit)ttlLfcv/3 «j-?*r- * 

O^BBSlKpSHOP*ffll/^THl 4 (c) ICTskt^ 

itzyfyvm^-Z (a-iflSHg) K#Sti« (5) 

^{Y^y^yvWr-Z 1 ©^>3 -y y»^©^SE%H 

fr-TSo Sfc> a— 7W80£ftlfc«&tfH 1 4 
(c) tC^-T7*-v>y h^tcAoTl^^fi, ^© 

[0 3 8 1] do) ^iknyxyyUftHtA^&yi 

a— WNBSBBBft- * 1 0 3 0 C*^T, a— mm 1 
0 2 o^BSfll Lrc^itnyT-yvm.?-* (a— tf 
«8S) * «k t>*Bt^{k n > r > 7 M to*. S*©^IiE 
HS7U IEa%a*Ht*^S*T'fe§i:*iJS-rS£, a 
-iflMMSS-y— ^ 1 0 30S, Bg^jb=i>7 1 >7g|r 

n>7 i >7»: Kc*a— 
(DAS) 1 0 3 0<D£mmK p D A ST'Bg^kUfcx 
-^:KpDAS (Kc) %a— •f«fflEIE'9--M l o 
3 0©lf5SBHK s D A STiS-Sf LT3>x>7g|K c?: 

Si : K p D E V-m-5ffkLfcBg^{k=<yx>78i : K p 
DEV (Kc) *fi«-rSo fftto-fe, KpDAS (K 
c) ^Kc^KpDEV (Kc) ©8t*Ht*^aia*|| 



(45) 



¥fffl 2 0 0 2 - 1 4 1 8 9 5 



[0 38 2] £<Dmm&9HC® 1 6*fflVTl(iWLfc<fc 

5fc, Bgmt^yf-yymT-* (a— «f$g§) fre>, 
a— «f«i§EIE-9— ^ (DAS) 1 030 <D&Bfl«K p 
DA : KpDAS 

(Kc) fcttDfflU *fc» a-if*HEIE'9--/W 0 

3 0©«$58iK s DA s-e^tTn^xy^iiK c% 
I*»U *fc, a^»?:J:»)ft»Lfc3>'r^y*Kc* 
a— !f«IS®&ISMI : K p D E VT?IP^§{fcLTHg4§{t; 
3^f^|: KpDEV (Kc) *^-rSJttaT?fe 

•So 

[0 3 8 3] (id fflsisiifc^tfjittiiigsaii 

a— WNMUE-tf— l 0 3 0KJ3i>T, ±jio^b 

l 0 3 0 (is ~>a >y~7V—/* 1010C7 
U 3-— !f»»BIE'9--/< 1 0 30t-> 3 yy+i- 
-Ml 0 1 0ffltfe^TfflSKIiE«KfeJ:t?J(H4«Kffi 

m*nnt%o cojaaa, ^©^ayT^-Mi o 

1 0 fca— «f«8g 1 0 2 0fflO*BSKIE«yi*«ttfJBtt 
[0 3 8 4] (12) ^fftnyf-^yf 1 -^! 

3—1fli»BffiJ--M 1 0 3 0 bis a 1 0 1 

o ffl<Dmmm&&vmmmmmtf&iLt -s t , a- 

1f«S8SBSE'9--M 1 03014, ^mt^y^yym^- 
$ (DAS) tti/aVfV—rtl 0 1 0(CjM(t-f3„ H§ 

Q'iteyf-vymy*-* (das) ft»c»w 

1/fcBl 7 (d) {C^fli^T'feSo avf-yyUAcD 
®*ftT-£> 5 ~> 3 >y 7°1)--M 1 0 1 0O|^giJ : ?Tfe5v' 

a -y 7° i d, ^mt^y^yym^-^ (a-ifas) 

(014 (c) ©S/ay^**tfa-lf»H^||WElH 

M»>/cf-^) , a? sac flKffiofcfrw-frAfflSfc 

<fc a— IflMgBE*- ^ l 0 3 oa^UMMHb 

3>f>7lf-^ : KpDEV (Kc) *tU cn 

SOx-^tc^fSa— tfWSBK-t^-'^ 1 0 3 0©* 

(das) Kit, =L-^m^mm^—^ 1030 

3 v/y-rt 1 0 1 ofcasttsnso ■faic^ 

[0 3 8 5] ifc, a— 1 030^1 

jht? t s sb =#*sn?* 5 K» 6n§§ftT$ § «^ 

(4, Bi^bnyx^yglr-^ (DAS) (4, 017 

(d) fc^-r«fcaica— if««04iSLfc (8) Hg^fb 
3>f->y«x-* (a— yfwm) **<d& s^t?r- 

«it5ctS<, Hi 8 (d 1 ) (c^lT <fc 5 (c, 
3.— y&gglD, h^>if^->3 > I D, 3>r>yi 
D, v'a-yT'MSNO, a-1f7^X©^8tT*Bf^ 
fbL/c3>f-> > ySlKpDE V (Kc) ©#x-**, 
a— »f«WBHEU-— l 0 3 O^tttHLT, tft&KS 

%,zmuLTv%mt^yTyvM7 : -$ (das) £t 



b£© 



rt<fc^ 0 <:©i§£(4, (8) ngmt^yr-yvm?- 

$ (a— «f«S) <0ttH*^FS4:&*©T?, Ssft-f5& 
IB, a-if«g8EIE'9— ^ 1 0 3 0©&H 
©#T*<fc</\, 
[0 3 8 6] (13) gff^-^^IiE 
a— WHISK*- ^ 1 0 3 0fr5Bt#{fc=i>-r>y 
f*-* (DAS) (01 7 (d) ) *&m\stci/3vZf 

o i oa, ^mt^yr-yyUf—S' (da 

s) ©^teaa^nfrfSo c<Dmmm&. mcmw 

■9— * 1 0 1 0(4, ffa— •flMMMW--'* 10 3 0 

gEfcf&frJS (C A) ©&BB«K p C A*ffl^rHfTU 
*K^M«ttW»^6© t> tti Ufca— M 
1 O3O©^ilKpDAS*ffll>T01 7 (d) (c* 
•TBf^fbnyxy^iix-^ (DAS) <Dm=fW&<D& 

M&ftfifm (CA) ©^maKpCA^ffl^TUffb, 
^K^BMIiEW»^69{ 9 tH bfca-"ir«ffl©£l8MI K 

pDEv%ffl^T0i 7 (d) icmt^mt^yy-yy 
f*-* (das) (c-^tns (8) egmt^yf-yy 

T5 0 a— *f«ffloaS«Ufe*S^BIl 4 (c) 
£^•3-7*- V-y h^fcAoTI/^^ti, ^©f 

[0 3 8 7] TlcfClttWLfeBIl 8 (d* ) 
itLTcBgmtzyTyymT 1 -* (DAS) ^i/3-y7° 
ir- Ml 0 1 0ft^S«Lfc«^f4, ^3<y7°+)— /*l 0 

1 0(4, 3-— 9* «§BKSE-9-— ^ ^<D^ISB»ffiE W»«0«ffiE* 
mm (CA) ^BIWKpCA*ffl^T*ffU ^(C 

^mmmmt^mo mLit^-^mmm-*)--^ 1 o 

3 0©^»K p DA S^ffll/^l 1 8 (d' ) (C^f 

^mt^yy-yyWf-^ (das) ©*?*^©^iiE 

£Hfrt-5©#©®gi: *5o 
[0 3 8 8] (14) ffiSBaE*«k tf BttSSK 

(1 5) ^mt^yy-y^mm-T-^mm 

^(c, a— ifftgg 1' 0 2 0 (4, vgmk^yf-yvmmx 

T-ZZ*y3 v-fV-^lcttLXmEtZo His. o© 

(4, fffiffiSKSEl3J:tfJBtt»B*llfTUT, fflSISII 

r^^StSiRx-^^a— ifWB 1 0 2 0 fr&S'g y 7* 
0 1 0(c^ft^nS„ a-lf«jB©j3Sffi 
Lfc*i^01 4 (c) ICTjit v«y hiflcA^T 

[0 3 8 9] Bg-^fkni/f-^^Slg^-r-^C^fiH 

17(e) (c^-rjiOT-fe^o s^fkn^f-y^llS* 

f-*(4, n>x>"yilA©S5l?rtT^5^3 •^IJ-- 
Al 0 1 0 ©!S$e L T'& § *y 3 v 7° I D, JR0fl*©» 
gij^i: Lt, a— ifWB 1 0 2 0 ©m^ffla^&tfSLft 
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ftffl 2 0 0 2 - 1 4 1 8 9 5 



£8-3l^T£$-r5 Y'yyf^i/^y I D, £5E> 3 

3>f>7if-^l 0>3>y7) £ LTa- !f$|g§ l 

0 2 OEgft LTtfcf 1 -* (Hi 4 (b) #Bg) f{C 

tefflmmmtfffittzn, ->3 7^-^i o i oe& 

[0 3 9 0] (16) ^fiESttS. *5 £t>* 

(i 7) m&jag 

B^fftn > f - > 7 tS*r- 2 *3-+P1i§§fr 5 L 
fc is a >y T^-M 1 0 1 OB, Bg^ftn^-rV^itSsR 

r t -z<Dmmm*nftt%<, cna, iai s^^^t 

a-y^-^l 0 1 Ofi, n>-r>^O^0?lttcM-r 

^^©a^^T-r^o i^fiia, 3-^<DJKS3it 

fcn>x> > y^{is 3yf-y7<7WNi#, ^3-y 
7\ 3— »f1i§§IS!iE-t>— ^gH#&^ $4&W&#{c 

[0 3 9 1] <KDiS^SafflCS5*T'tc(i, a— «f«H8 
1 0 3 0K.£%B%mt3>r->y&<omM} 
Mfil7 p D-bX«Ii:5:cT^§Ot\ ->3 >y7°-t>- 
-Ml 0 1 Ott, a— «f«S8nfc©*®«LS'?ttR&ffl 
a^TT-t^^o 3-1f«f§ 1 0 2 0 fCfcl^T 

y©f!lffltfT**a^o 3.-lf«HBKBE-9— ^tt, 06* 
T» fa -y 7<flJ#$T*©3>x:v7&»;3lt&^fii: 

[0392] (i 8) vgmt^yf-yvmT-f 2 (.is 

a y ~f) 

'/a'y^-Mi 0 1 Ofi, Bg^fbn^-r^^itx 

-2 2 07 3 7 7°) *a— tfflffi 1 0 2 OK&flTf 3„ 
[0 3 9 3] 0^|{fc:37x77g|f f -2 2 (^3>y^) 

^{c^tfcgii 7(f) \c7r,tm*)X'h 

1 0 2 OOHgiJ^-efcSa— ifWH I D, 3-+f$$g§§g 
SE+>— Ml 0 3 O^eS^UfcBf^k^V-rVygtv 1 - 

2 (DAS) (Hll 7 (d) Oa-lfiS, 3— *f«§§ 

n^CD-f-^tCft-f 5^3 y^tf— M 1 0 1 OOlff 



2 2 (-7377) £H\ ^S'^+t-Al 0 1 04)£M 
ttK9i*fc, 3— ifWHBK^- >< l 0 3 0O&IMNE 

wat?n, 3-+c^g§i 0 2 0Kasf*«n*o * 

fc\ 3— ifWH 1 0 2 0^3— «f«HBBIiE-y--/^l»« 

[0 3 9 4] ft*, 3— tfafgKSEtf-M 1 0 3 own 

3 y M 1 0 1 0 3-lf flMBKEtf-M 10 3 0 
fr5>§{f-f3Hg#{b3 7x7781^-2 (DAS) im 

KWfflLitsi 8 (d* ) (DmmtLTc^mt^yf-y 

VWf—Z (DAS) TfeS^-a-tt, 7 3 >y 7°1t-M 1 
0 l oti, 018 (f ) tc^-rHg^ffcn 7x778^' 
-2 2 (7 3 <y7°) *a— IfWBEaMtT*. 
■6» Hi 8 (d* ) E^1-jBil8{bLfcBg#{b3>7 L >^ 
Sir- 2 (DAS) £5/ 3 7 7°+J--M©®££ttftD Ufc 
7*-2fc, 7a77'tf-Ml o 1 0(D&mm£WWt. 
3— <f«Sg^|E-9-- A l o 3 0®ttMmE9»tf*ttb 
T3— !f«Hgi 0 2 Ofc&ttf a„ 
[0 3 9 5] (19) §{§-r-2^IE 
i/a >M 0 1 Ofr&, Bglf{fc3y-r77gtx- 

2 2 (7 3 7 7°) Lfc^-Hf^gg i o 2 0 {*, « 

•^ft:3>x>^^f-*-2 2 (->3>yy) (D^liESaa^ll 

u-tnm<o9mx'h<o. 3— yasi 0 20a, s-r 

'>3 -y^-9--/^ 1 0 1 0^6>S^LAc^3 <y7V—/*<D 

wmmwwvmiEttffim (c a) o^bs«k p c a 

•y^-/q 0 1 0C&H3&K p SHOP*ffll''T01 
7 (f) iCTrstSgmt^yr-yvrnT-Z 2 (->3-y 
7) 0*?S^O^iE^||fT-r§ 0 £5>fc> a— »f«» 
Btt-9— M 1 0 3 0 ©^Hia«EWfl©SttiE*«fifffl (C 
A) ©&M«KpCA*ffli/V^SffU ^ic&NWnEffi 
t) W Lfc3— tf^lSII^-M 1 0 3 0 O^M 
«KpDAS*ffl^THl 7 (f) ETjrfHg'itftrjy-r 
>7if-^2 0/3 7 70 Ef*n* (1 2) Bg-Sffc 

3>f> i yiiT f -2 (das) (Dm&timzMfitZo 
&tc {siZfrcD&mmjctfm 1 7 (f) tc^-T7*-^ 

[0 3 9 6] (2 0) {S#©fi 
~>3 'y7+>--/U 0 1 0^P>g« U/cH^{b3>'r> > y 
Sir- 2 2 (i/ 3 770 *«WE Ufc3— »fa§§ 10 2 0 

B|#fk3>-r>7af : -2 2 (^3 7 70 
SiBO^gBSlK p D E VT'Hg^fb^nfcHg^knVr- 
>"ySt: KpDEV (Kc) ^rgaoffi^SlKsDEV 
«ffll/->T^#L, ^BtC 3-+f^g§©«#g!K s t o 

*ffl^TBiH§fkLTB8#ft3y'f> , y8l: Ks t o (K 
c) fcSEfiRLT, cn*a-f«»i 0 2 OOfElft^S 

EtS*fll"5o 3>r> > y<DfUfflB#£«> ^mt^yf-y 



\ 



ym- k s t o (k c) wmmK s t o^m^xm.^ 

yyiKc»^ Bt^lbn^xy^K c (Conten 
t) <D«^©I£3lf?U 3>fy7 (Content) *U 

[0397] jk±, ft^tc*.?^ 3>f-yymmKft 

Rtt«Efc<fc»>, *§¥©Stt, MAtfa— 

fc * o -f * t T 3 >f- > y *m K> § I £ t £> ft 2<DH&m, 

[0398] vrnta—vwrnit. mwimc&*). 3. 
«, a— tfasKSE-9— ^icstr sjaa, m««©fr 

fttf, JBttOKfcfT ft a c i: ic «k ^ ffi{ffl¥©gtttf eg 

[0 3 9 9] fflSBIiE«iam:*«ffl#5IB**ff 
[0400] i74 iC^-fSQa&v 07 2 (Cj^-f £QJI;fr> 

3 0 07 4©#^§ (1) ^e. (1 6) on^Ma^iiff 

[0401] (i) hyyyfsayi d, mxw^f 

(2) (PAg*T-2&ffl 

a— »f wr i o 2 o a, n>x> > yoiiAS5)<f : ' 

-**ft*U fay^-/M 0 1 0K3Hrr«. fl 
AS^X-*©^^ SfeKBttBLfcHl 4 (a) (C^ 

[0 4 0 2] (3) Sffx-^IE 
014 (a) fc^*»AB#'7 f -**a-lftt8§i 0 2 

a*nfT-r §„ "*JsaM«fcfett3ttffi«igf4, has* 

[o 4 o 3] 07 5 ic&MmfmKM&itmffmtiz 

1\ **vfe-S>i:»& ($SAg*r-2) t. a— 9** 



2 0 0 2-1 4 1 895 

MO^B«ilEW»*Sfll ( S 2 3 0 1 ) Lfci/a v7V 
-/M 0 1 Ott, a-if«a}<0^BB»SEW«*4ilH!MliE 
W«l8fTJSO^Bfl«K p C ASrffl^TlME (S 2 3 0 
2) 1" 5„ t&SEtfritft (S 2 3 0 3T*Y e s) "f 5i:> 

finmiMfr&a— vmmotemm : k p dev%® 

DfctiL (S2304) T> a— iflRSO&Mtt • K p D 
E V*ffl«r"»TmAB#x-*Oa— lf«iMi*©«ME 
(S 2 3 0 5) ^ffft^o * 6IC, fctEfcWA (S 2 3 
06T'Yes) £INittK9lfffr5fii1£1ftffi*% 
<9tBL (S2307) T, ISftUft (CCTtta-if 
«S8**"rJBtt) ■efcSfrSfrfcWS (S 2 3 0 8) 

u Ea-e**»*tt, ^imsm (s 2 3 0 9) t 

LT, 3fc©»!!lCfMfr*, Xf7^S 2 30 3, S2 
306, S2308 T'W^tfN o ©*§£(4, tMBftfflfc 

« cs 23 1 o) tLxmm%<p±tZo 

[0 4 0 4] 3K»c, &M«8EW»fc)BtttEIBl&*ffl^;fc 
§«T f -2&SBl!] ! 3(<:ol,>T07 6©7D-£$t^T§i 

mrrs. sr, *vb-vtm% (was*-?*-*) 

2 4 0 1) Lt">a 1 0 1 0(4, a— »f«i§§ 

©4>BII«SEW»*^ia«iEW»afTffi©^HIIIK p C A 
£ffl^Tt&SE (S 2 4 0 2) -fSo tftEA^jSiE (S 2 4 
0 3 T* Yes) -TSi:, 4>M«iEW«^6a— ifttHBO 
film: KpDEV^ffiOtBL (S 2 4 0 4) T, a- 

: K p D E V*ffll/>Ti»ASjRx-^<D 
a— lf«aW*OtME (S 2 4 0 5) £ffft-5o * 5> 
tCs (S 2 4 0 6TYes) tit. JRttS 

W»*JBtt8EW»afTJS©fiBB»K p A A*ffll^T8MBE 
(S 2 4 0 7) -T5o ^K^JStt (S 2 4 0 8T'Y e 
s) Lfcci:**ff4:bT. JRtt8EW«A^BttflMfi* 
KDttJb (S 2 4 0 9) T, jESftStt (CCT*(4a- 
,1f««*S-rjB1t) TfcSft^ft^ipJje (S 2 4 1 0) 
Ls IESl?fe5«^«, ^MajSlA (S 2 4 1 1) 
bT> yVDmmicWfttZo 7.r-yyS2403, S2 
4 0 6, S 2 4 0 8, S 2 4 1 0T*TO£# t No©J§'& 
(4, WEffl99cSSE (S 2 4 1 2) t L?mm*#±t 

[0 4 0 5] (4) Bt-§fb3>r> , y*54:t>*Bt-^fkn> 
r > yif- 2 1 (->3 7^) i^fl 

3 -v 7^-^ 1 0 l Ofc&^T, BJIASsRx-^©^ 
iE*^7t> r-2KS©ftt.^ftn>7 L >^|i9AS 

0 1 0(4, Bg-^fbn^f-y^^cfct/Bg^kny-r^ 
7lf-^ 1 (->3 ; y/) (01 4 (b) ^a- 

[0 4 0 6] (5) SfltT*— *«WBE 
->3 y-fV— * \ 0 1 0A^B|^fl:3>x> < y : Kc 

(content) t 014 (b) lC7fitf%mt=i>fyv 
81-r-* 1 (~>3 vf) «Mlbfca— 9*I»S§ 1 0 2.0 

(4, asre{k3>r>y«f , -*i (~>3>yy) ©^H5a 
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[0 4 0 7] (6) fS^mt^yf-yyUf-^ (a-+F 

1188) feJctfAWIta^r^yaftHt^AfiSHSfil 

a— «f «8 1 0 2 0 B\ a-lfflHBSBfiEtf-- /< 1 
0 3 01CWLT, jfetJ/af^-^l 0 1 Oi^fi 

tfcHg^knyx^^SiK p DA S (Kc) i:> Bg^ffk 
a^vyttWtfrAB* (014 (c) &&ff 

[0 4 0 8] (7) gilr-*8ffi 

a— 9*asi o 2 ofr^mt^yf-yvrnT-'-z (a 
— «f«gi) *3<ktfBf#{k3>7 i > , yat*Ht*^s^ (0 

14 (c) ) *5M Lfc a— !f aSKEtf- >*1 030 
fSo CflDtMEfflStt, ftKBW3L;fcEI7 5> 07 6© 

■So 

[0 4 0 9] (8) Bf^fb^^rV^JtAHtA^^a, 
$LK, 1 0 3 Otcfc^T, K p D 

AS (Kc) -^Kc^KpDEV (Kc) (DUMffrX. 

[0410] (9) ^mt^y^yyf-^miM 

Mz. a-lflMMBKtf- * 1 0 3 0(t Bt^fbnyf- 
>>y||-r-^ (DAS) S">3 •vT'-tfwS l 0 1 Otcg 
ffl-TSo H«{b3>f->y*-r-* (DAS) ©$$ 
«, ftlcS*0,SLfc01 7 (d) \C7j<tmi&?'&5o 
[0 4 11] (10) giET-fMl 

^.-^mmmm^-^i o 3 ofrp>Bi^{bn>x>7gi 

(DAS) (01 7 (d) ) *g®Lt">3V7 

y-jti oios, Bf^bnyr^^it'r-^ (da 

s) ©^iiMa^nff-r^o c©&iiE$aa«:> ft«£ 
tfc07 5, 07 6<Dmm7ti-tmm<Dmmv&o, 

* fi JSttiEW»©JRtt^i— «f / < ("9— 

exam) jastf+ihsn*. 

[0 4 12] (11) w^bn^f-vyaB*?*-^^ 

la 

a— *f«HS 1 0 2 otf\ Sreffcayf-^yag* 
T-#£^3-v7+r-^K#LTjM{rf3o Bg^fbn> 
t^^S*^'- #©«*&« 01 7 (e) tc^f il 9 T* 

[0413] (12) i^teaii, *s<£tf 
(13) m&mm 

fei/3-y^-/M 0 1 0«, Bg^b3>T>7g|g3j< 



75, 07 6ojaa7n-i:iBia©«iaT?*»), sttss 

[0 4 14] (14) Bg#fba>x>'7Slf f -^2 (*> 
3 v ~f) MiM 

i/aVfV—Kl 0 1 0fc*tf*!l&ffl»A<**7 , i"* 
i/a'v^-^i 0 1 Oii, Bg^fb^r^yglx 
2 (i/37^ *a— yfllS 1 0 2 Ofc&ffi-f 5„ 

KBttBL-fcHl 7 (f) K^filDTftSo 
[0 4 15] (15) g«r-**SE 

(16) m&m . 

i/a y-fV-rt 1 0 1 OfrP>, BgJffbn^Ti/yS-f- 

22 (5/3 7 7) mm 1 0 2 0 tt, Bg 

^fb^>r>' , ygiT f -^2 (->3 7 70 o^iijaa^n 

frfSo CCtftSEJaStt, ftCii0^Lfc07 5, 07 6 
§o f»-*fclE*<St?fc, a— <f«»l 0 2 0(4, a> 

x>7®f*#ffia, -rat>-6gao4iraaKpDEve 

BS^fb^f tlfcBf^fb^ >f-yyf& : K p D E V (Kc) 

*iE08»HiKsDEV*ffl^Ta#U 3 
-if K s t o*ffl^T«^bUTW^k3 
>f-V^SI : K s t o (K c) *4fiSctT^ utl^a- 

*r%m i o 2 ooteis^isfcfeirt-r^ffia^^T-r^o 

[0 4 1 6] CO^olC, 0 7 4 iCTjVf&iatCfc^T 

tt. *ISBiEi*Ji:Jitt»K*fTa3©1»«ft< < gf§L 
fcx - * ©8* «i SE 1/ •> T , gtt^: BIK-T ^ 

« o 5 1 * k# 3 *&g©a»swb#»8* ft s. 

[0 4 17]ftfe, ±a>LfcS14f ? -^{c c t5BttB|lI 

n©x>r^r^tc^®^tP.ftfc^t^c»^^TStt 

^IS^ R^*ftfeJRtt*l s MWIWif SfcttJRttH 
UMKcttlftU ilft6©iEW»*ffll^TfflflWi¥©JStt 
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[0 4i8] w±, ¥ffe<Dnnmttmx%tft>. *k 

[0 4 19] 

©S/XrAfccfcQ^^xiyyEM/j&tinfct n>r 

[0 4 2 0] S&fcl, *H03yf^7Ei'>XfA 

(DAS) <D&BMTZ?Hg# f b t it 3 >r > V SI K p D A 
S ( K c ) *a~»flt«0&H«l K p D E V TflHfft L 
fc3>7 L >^aKpDE V (Kc) KJbHt^AS^Kia* 

3 yy- y ymm&wm? 3 a— vmNKBBV--' W*fr 

[0 4 2 1 ] ^fSH^Oayxy^Effv-XrA 
fc e fct>*3>x> < yEfB^ffifcJ;na\ 3— 

[01] ^mn<Duy7-y^mn^7,7-h<Di/7.7-LM. 
S *5 «fc tf 3 y r > y EfB$0JI£ 1" 5 0 T* & 5 0 
[02] *^03>x> , yEff^X-rAtCfcnt^^3 

[0 3 ] ##§HJ!<D3 >x >yS«'>Xf AfcfcttSv' 3 
•y ^-9— ^OPSeST*- * X ©««*^-T 0T-& 

[0 4 ] #fgBj§© 3 y y Efflux r A }3 5 > a 
y •?■*)— *W)Wtl&Smj&*jMr 0T-feS o 
[0 5] ^fg^OnVx^^EM^Xf-AlcfettSa- 

[0 6 ] *5§H^(Dn yf-^yffifcS'XT'AfcfeW-Sa— 



[0 7 ] *^03 >f-> > yffi{i>'X'r Aicfcnt§3- 

[08] *SSW03>f->'yEfflS/Xf-AKfett*3.- 

[0 9 ] #«BI<D 3 > r > y Eft X f A tc fcnt 5 & H! 
gil£H^»BE^fiE^^-r 0T& 5 0 

[0i o] ^B^co^yxy^iHfl^xrAictei/^Tia 

ffl^rii4;*«£Atta«Mn-r 50T-& s 0 

[011] *^c03>r> > >'iHfi>'XrAtCt3^Tji 
[01 2] #JP)!©3:yr>yE{r>XrAtcfc^TjI 

[01 3] *^<D3>f->>yHEfi>'XrAlcfe^^Tji 

[01 4] *f§B^con>r>' < >E{f>'XrAtcfc^T# 
x>f w tM (WTiHI* n§ x- ^«i«*JKWr 5 0T? 

[015] *^(D3>x>' , yEfiv'XxAlCfc^Tii 

[01 6] #HBJ?cDayry > yK{fi/7.TA£&^Tii 
[017] *^(7)3>x> > yEfi>'7.-rA(C*5^T^ 

[01 8] *5SB§<D3>'x> > yEji>'X-rAlCfc^T^- 

^yT4Tjmx-mmzn%7-zm&L*wm?z>m-c 

[019] *fg0^^n>x>^Eff^7s-rAtC*5^T^ 
[02 0] *»W©3>x>^Efl^X'rixf<:*5^S^ 
[02 1] *^£Dn>-f >^Efr>Xf-A^i3tt5a 
[0 2 2] *aW©3>-r> , yBii^X'rA*Ci3*t*a 

[02 3] *%W03>-r> , yE^->7.-rAfC*5^5-> 
3 7 7 p -9"-^i:3-^1il§§ffl©ffiIl7o- (*©1) * 

[02 4] *^Bi<D3>f ^'yEfi^XrAtCteltSi/ 

[02 5] *5gBfl<03>f->' > 7Eff>'X-rAtc43W§a 
-if «SBIiE-9-- / < i: a— «flM§HB©*a8:7 n 
01?fe?> o 

[02 6] i&mOnyT- yyE«fXf-AlC:J3tt33 
— «f »«BIE-9--Ai: i/ 3 -y y-lt- /<|fflOfflS7 n-* 
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[02 7] ♦JSWoavf-^yEffl^rAfcfcitss' 
[02 8] ^mo^yTyy&^i/xruc^f^i/ 

aV?*)— 'S£a.—*f®&M<»Wm7u- (*©2) % 
[02 9] *%.W<D3y7-yvmiy7>TL<DmM£ 

LTmmv-^%m^fcay7-yy&m%!M%%fflt% 

[030] *nw<D^yr-yyMiwy7>7-L><D : £Bm£ 
hrMi^-^^m^rc^yT-y^mmtiim^mmt^ 

0Tfc5 o 

[03 1] *ffflBOn>r> , yEfll'>X'rAOSJge!I© 

uyr-yy WM^M^Umt 3 0 T* & 5 0 

[03 2] *«W03>f->yEffl'>Xf:Atei3(f^TS' 
[03 3] *^con>"ry > yEfIv'X-rAlc^l^T : & 

x > r -c r -r rs X- mm <* n § r- * « 0 t 

3d<e>o 

[03 4] *^|(D3 >f>7Ef 
i>f^ r ^IB"T?ilfll*tiS t*- *«ba*BWi"r 5 0T* 

[03 5] *^<Da>r>' > yiHfl>'X7 L A£DffiSigII 
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